Support for certificate and key loading from OS stores

[scathatheworm]

Currently, beats only supports providing files for certificate and key for client authentication.

In operations of fleets of endpoints, client certificates are stored in the secure OS space for it: keychain in MacOS, Windows certificate store for Windows.

To extract events securely from these endpoints/systems, these certificates are needed, and exposing them as files in the filesystems poses a challenge in securing device identity.

The use case is for beats to allow the usage of client certificates from the OS secure stores. This might be related to #13591

[botelastic]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[opoplawski]

Any chance this can be reopened? This is much needed functionality.

[blakerouse]

Can you provide more explanation on what you are wanting solved? At the moment using a system installed CA should provide everything you need to verify your certificates. Or are you looking for specific certificate pinning?

[opoplawski]

We would like to use automatically generated computer certificates that are kept in the system key stores. It is very cumbersome to export these certificates to files (they are not exportable by default and so require creation of a separate CRL template and duplicate certificates) as well as creating more things that need to be carefully protected. This https://github.com/github/certstore appears to be a relevant Go library for accessing these items.

[botelastic]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[opoplawski]

This is still very much a useful item to have.

[botelastic]

Hi!
We just realized that we haven't looked into this issue in a while. We're sorry!

We're labeling this issue as Stale to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1.
Thank you for your contribution!

[opoplawski]

Please implement this. :+1

[Akshaymb07]

Please implement this. :+1

[botelastic]

Hi!
We just realized that we haven't looked into this issue in a while. We're sorry!

We're labeling this issue as Stale to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1.
Thank you for your contribution!