AD security realm: unknown setting "...metadata"

jetnet · August 22, 2019, 2:02pm

The following configuration in ES 7.3 stopped working after adding the metadata parameter:

xpack.security.authc:
      realms:
        file.file1:
          order: 0
        native.native1:
          order: 1
        active_directory.company_ad:
          enabled: true
          order: 4
          domain_name: company.com
          user_search:
            base_dn: "DC=dir,DC=svc,DC=company,DC=com"
          group_search:
            base_dn: "DC=dir,DC=svc,DC=company,DC=com"
          url: ldaps://dir.svc.company.com:636
          ssl.verification_mode: none
          bind_dn: "CN=user,OU=People,DC=dir,DC=svc,DC=company,DC=com"
          unmapped_groups_as_roles: true
          follow_referrals: false
          cache.ttl: 36000s
          metadata: ["cn", "name"]

error message:

IllegalArgumentException: unknown setting [xpack.security.authc.realms.active_directory.company_ad.metadata] please check that any required plugins are installed, or check the breaking changes documentation for removed settings

I double checked the documentation, but could not find what was wrong with the syntax. Any help is really appreciated.

jetnet · August 23, 2019, 4:44am

make sense to open an issues at github?

Yogesh_Gaikwad · August 23, 2019, 5:53am

Hi @jetnet,

Sorry, looks like it broke in https://github.com/elastic/elasticsearch/pull/30241.
Would you be able to raise a bug? else I can do it for you.

Thanks and Regards,
Yogesh Gaikwad

jetnet · August 23, 2019, 7:36am

Hi Yogesh,

it looks like, there is a ticket for that already.
Thanks for the confirmation.

ikakavas · August 23, 2019, 7:58am

Thanks for raising this @jetnet, I opened the GH issue yesterday but failed to give some feedback here

system · September 20, 2019, 7:58am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.