Loannis,
Thanks for the response...
I changed the configuration as below:
xpack.monitoring.enabled: true
xpack.monitoring.collection.enabled: true
xpack.monitoring.collection.interval: 60s
#cluster_alerts.management.enabled: true
xpack.monitoring.collection.cluster.stats.timeout: 60s
xpack.monitoring.history.duration: 90d
xpack.watcher.history.cleaner_service.enabled: true
xpack.http.proxy.host: 'proxyhost.xxx.yyy.com'
xpack.http.proxy.port: 3128
xpack.watcher.enabled: true
xpack.security.enabled: true
xpack:
security:
authc:
realms:
active_directory:
type: active_directory
order: 0
domain_name: xxx.yyy.com
=================
And got a different error:
[2018-09-27T14:40:38,202][INFO ][o.e.x.s.t.n.SecurityNetty4HttpServerTransport] [node-1] publish_address {10.100.35.182:9200}, bound_addresses {elasitcIP:9200}
[2018-09-27T14:40:38,202][INFO ][o.e.n.Node ] [node-1] started
[2018-09-27T14:40:39,409][INFO ][o.e.l.LicenseService ] [node-1] license [ea071fcf-a30c-4bf3-bed6-de82629478ca] mode [trial] - valid
[2018-09-27T14:40:39,422][INFO ][o.e.g.GatewayService ] [node-1] recovered [30] indices into cluster_state
[2018-09-27T14:40:40,891][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:40,990][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:41,118][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:41,190][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:42,712][INFO ][o.e.c.r.a.AllocationService] [node-1] Cluster health status changed from [RED] to [YELLOW] (reason: [shards started [[metricbeat-6.3.2-2018.08.30][0], [metricbeat-6.3.2-2018.08.27][0], [.kibana][0]] ...]).
[2018-09-27T14:40:43,513][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:46,022][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:48,531][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:50,371][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:50,373][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
[2018-09-27T14:40:51,040][WARN ][o.e.x.s.a.AuthenticationService] [node-1] Authentication to realm active_directory failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), errorMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580', diagnosticMessage='80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580'))
...
I did authentication as below.... seems to be fine...
$ curl -k -u localuser 'http://10.100.35.182:9200/_xpack/security/_authenticate?pretty'
Enter host password for user 'CD021544':
[ec2-user@xxxoelke1b-03 ~]$ curl -k -u localuser 'http://:9200/_xpack/security/_authenticate?pretty'
Enter host password for user 'localuser':
{
"username" : "localuser",
"roles" : [ ],
"full_name" : null,
"email" : null,
"metadata" : {
"ldap_dn" : "CN=localuser,CN=Users,DC=xxx,DC=yyy,DC=com",
"ldap_groups" : [
"CN=Administrators,CN=Builtin,DC=xxx,DC=yyy,DC=com",
"CN=Users,CN=Builtin,DC=xxx,DC=yyy,DC=com",
"CN=Remote Management Users,CN=Builtin,DC=xxx,DC=yyy,DC=com",
"CN=Domain Admins,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Domain Users,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Cert Publishers,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Schema Admins,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Enterprise Admins,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Group Policy Creator Owners,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=Denied RODC Password Replication Group,CN=Users,DC=xxx,DC=yyy,DC=com",
"CN=DnsAdmins,CN=Users,DC=xxx,DC=yyy,DC=com"
]
},
"enabled" : true
}
Please help to find out what went wrong and how to fix..
Thanks a lot in advance
Li