However, whenever we try to login with these privileges we get -
Unable to fetch mapping. Do you have indices matching the pattern?
and if enter the index name, we get
Could not locate that index-pattern (id: customer)
and Config: Error 400 Bad Request: [security_exception] Can't execute an update request if field or document level security is enabled.
When we define the role, if we select the proper index rather than '*' and then if we access the kibana page, it only shows the side bar and nothing else. Clicking on any options like discover or visualize doesn't load anything.
Does anyone how to fix this or can identify something that we are missing?
You are applying Document Level Security (DLS) to all indices (names: *) which is a problem. Kibana uses indices to store configuration and dashboards, and you are attempting to restriction the user to documents that have a company of Google (which won't be true for internal Kibana documents). If you want to use DLS then you need to be very careful to only apply it to the correct indices.
You are using privileges: all with DLS. Document Level Security is a read-only feature. (See the "NOTE" at the top of this page) If you are assigning a DLS query to an index pattern within a role, you should only grant read privileges to that index.
Hi Tim,
For,
1: As before if don't have * in there, everything is just blank for the user. (see the first image)
2: It works if we do * but otherwise if we select an index we get the following error.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.