在security.json中显示"blockUnknown"属性，这是万恶之源.从头开始执行所有步骤之后，即使简单的身份验证也无法使用此属性集.因此，我决定将配置降到最低，并且一旦我从security.json中删除blockUnknown，便开始工作.

Turns out "blockUnknown" property in security.json was the root of all evil. After going through all steps from scratch even simple authentication was not working with this property set. So I decided to make configuration as minimal as it can be and I worked once I removed blockUnknown from security.json.

我不确定此属性到底有什么问题，但是在调试会话后，我发现了可能的错误.内部Solr节点通信无法获取集群中节点的公共密钥，可能是由于此属性与身份验证有关.由于某种原因，节点未进行身份验证.

I am not sure what exactly is wrong with this property, but after a debugging session I spotted possible error. Internal solr nodes communication was failing on fetching public keys of node in a cluster, probably because of this property in connection with authentication. Nodes for some reason were not authenticating.

无论如何...现在，我已经通过SSL进行身份验证和授权，并且可以在SSL级别阻止未知主机.布拉沃·贾！

Anyway... now I have authentication + authorization over SSL and I can block unknown hosts on SSL level. Brawo Ja!