Setting up a Splunk instance and in the past I used a load balancer that handled certs for me. But this instance is going to terminate directly on the Splunk instance. Getting letsencrypt working on Splunk web was trivial about 20 minutes of time. But for the life of me I can't get it working with the HTTP Event Collector (HEC). Any walk through or tutorials on cert management on HEC, ideally with letsencrypt.
Thought I could just point at the same files as Splunk web but doesn't seem to work that way.