Hello,
I want to use an active directory connection with x-pack.
My error is that the account of active directory is associated with no role. However, it seems to me that I followed the configuration steps:
Edit elasticsearch.yml
xpack:
security:
authc:
realms:
active_directory:
type: active_directory
order: 0
domain_name: myactivedirectory.com
url: ldap://myactivedirectory:389
unmapped_groups_as_roles: true
files:
role_mapping: "CONFIG_DIR/x-pack/role_mapping.yml"
Edit role_mapping.yml
admin:
- "CN=GG_USER_EXEMPLE1,OU=EXEMPLE,OU=EXEMPLE,DC=directory,DC=EXEMPLE,DC=com"
Edit roles.yml
admin:
cluster: all
indices:
'*': all
To watch the log of the connection, I active it in the file log4j2.proprieties
logger.authc.name = org.elasticsearch.xpack.security.authc
logger.authc.level = DEBUG
So when I log in, the connection is a success.
[2017-04-04T12:17:29,612][DEBUG][o.e.x.s.a.l.LdapRealm ] [Z7NT4T5] authenticated user [f.user], with roles [[GG_USER_EXEMPLE1, GG_USER_EXEMPLE2, GG_USER_EXEMPLE3, GG_USER_EXEMPLE4, GG_USER_EXEMPLE5 ]]
However, I can see nothing on the website, all is white. I think I don't have access rights
Do you know what's the problem ?
Thank you
Cordialement
FJ