From a46a0ae99fd1185df216c3ece2cf74ce6073de62 Mon Sep 17 00:00:00 2001
From: Camille Li <camille.li@elastic.co>
Date: Wed, 28 Oct 2020 03:44:27 +1030
Subject: [PATCH] update a scenario when ca is self signed. (#21090)

* update a scenario when ca is self signed.

[reference](https://github.com/stripe/stripe-go/issues/1003#issuecomment-566212551)

* Update libbeat/docs/shared-ssl-config.asciidoc

Co-authored-by: Brandon Morelli <brandon.morelli@elastic.co>
---
 libbeat/docs/shared-ssl-config.asciidoc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libbeat/docs/shared-ssl-config.asciidoc b/libbeat/docs/shared-ssl-config.asciidoc
index f850aeedd68..351ff85414d 100644
--- a/libbeat/docs/shared-ssl-config.asciidoc
+++ b/libbeat/docs/shared-ssl-config.asciidoc
@@ -104,7 +104,7 @@ NOTE: SSL settings are disabled if either `enabled` is set to `false` or the
 [float]
 ==== `certificate_authorities`
 
-The list of root certificates for server verifications. If `certificate_authorities` is empty or not set, the trusted certificate authorities of the host system are used.
+The list of root certificates for server verifications. If `certificate_authorities` is empty or not set, the trusted certificate authorities of the host system are used. If `certificate_authorities` is self-signed, the host system needs to trust that CA cert as well.
 
 [float]
 [[certificate]]