diff --git a/salt/filebeat/init.sls b/salt/filebeat/init.sls
index ca173f5d7..86fbbc003 100644
--- a/salt/filebeat/init.sls
+++ b/salt/filebeat/init.sls
@@ -45,4 +45,5 @@ so-filebeat:
       - /opt/so/conf/filebeat/etc/filebeat.yml:/usr/share/filebeat/filebeat.yml:ro
       - /nsm/bro/spool/manager:/nsm/bro/spool:ro
       - /opt/so/conf/filebeat/etc/pki/filebeat.crt:/usr/share/filebeat/filebeat.crt:ro
+      - /etc/ssl/certs/intca.crt:/usr/share/filebeat/intraca.crt:ro
     - network_mode: so-elastic-net
diff --git a/salt/logstash/files/dynamic/0006_input_beats.conf b/salt/logstash/files/dynamic/0006_input_beats.conf
index 00ba64578..79766785f 100644
--- a/salt/logstash/files/dynamic/0006_input_beats.conf
+++ b/salt/logstash/files/dynamic/0006_input_beats.conf
@@ -7,7 +7,7 @@ input {
   beats {
     port => "5044"
     ssl => true
-    ssl_certificate => "/some/locations"
+    ssl_certificate => ""
     ssl_key => "/some/location"
     tags => [ "beat" ]
   }
diff --git a/salt/logstash/init.sls b/salt/logstash/init.sls
index 59d4560a1..732ec7d15 100644
--- a/salt/logstash/init.sls
+++ b/salt/logstash/init.sls
@@ -133,4 +133,6 @@ so-logstash:
       - /nsm/logstash:/usr/share/logstash/data:rw
       - /opt/so/log/logstash:/var/log/logstash:rw
       - /sys/fs/cgroup:/sys/fs/cgroup:ro
+      - /etc/pki/filebeat.crt:/usr/share/logstash/filebeat.crt:ro
+      - /etc/pki/filebeat.key:/usr/share/logstash/filebeat.key:ro
     - network_mode: so-elastic-net