diff --git a/salt/elasticsearch/init.sls b/salt/elasticsearch/init.sls
index e0a8b0a94..b9f4894e9 100644
--- a/salt/elasticsearch/init.sls
+++ b/salt/elasticsearch/init.sls
@@ -67,6 +67,13 @@ cacertz:
     - user: 939
     - group: 939
 
+capemz:
+  file.managed:
+    - name: /opt/so/conf/ca/tls-ca-bundle.pem
+    - source: salt://common/tls-ca-bundle.pem
+    - user: 939
+    - group: 939
+
 # Add ES Group
 elasticsearchgroup:
   group.present:
diff --git a/salt/logstash/init.sls b/salt/logstash/init.sls
index 6cdecbc47..0cd50b1ab 100644
--- a/salt/logstash/init.sls
+++ b/salt/logstash/init.sls
@@ -167,6 +167,7 @@ so-logstash:
       - /etc/pki/filebeat.p8:/usr/share/logstash/filebeat.key:ro
       - /etc/pki/ca.crt:/usr/share/filebeat/ca.crt:ro
       - /opt/so/conf/ca/cacerts:/etc/pki/ca-trust/extracted/java/cacerts:ro
+      - /opt/so/conf/tls-ca-bundle.pem:/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem
       {%- if grains['role'] == 'so-eval' %}
       - /nsm/zeek:/nsm/zeek:ro
       - /nsm/suricata:/suricata:ro