Action unauthorized for user

Elastic Stack Kibana
1

I have created a user using:
Stack Management / Users
and added roles: kibana_admin, kibana_system
however, the user got error when tried to run queury:

{
  "error" : {
    "root_cause" : [
      {
        "type" : "security_exception",
        "reason" : "action [indices:data/read/search] is unauthorized for user [ekhlass]"
      }
    ],
    "type" : "security_exception",
    "reason" : "action [indices:data/read/search] is unauthorized for user [ekhlass]"
  },
  "status" : 403
}

Kindly advice.

2

@Samir_Said Welcome!

You need to create a role that gives that user access to that functionality. Then assign that new role to the user.

Kibana Admin - Has no read/write/search on any index privileges.
Kibana System - Has access to system indexes but if you see below it doesn't give read/write/search to *.

image
image2132×206 10.3 KB

The role you probably want is below. But you can restrict access to certain indicies and privileges.

image
image2054×210 7.58 KB

1 Like
3

Thank you for help, I have fixed the issue.

4

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.