I have elasticsearch server hosted on virtual machine in azure cloud. I have an azure default directory and users added to it. I want to login to elasticsearch using credentials for the users in active directory. I tried the setup by adding realm in elasticsearch configuration as given below but unable to achieve it. Getting
An error occurred while attempting to establish a connection to server detaropwmail2com.onmicrosoft.com/127.0.0.1:636: ConnectException(Connection refused), ldapSDKVersion=4.0.8, revision=28812
This is information specific to your Azure VM and Azure Active Directory and I'm afraid I can't be much of help as I'm not familiar.
I'd try and figure out what the URL for accessing your "active directory defaults directory" either from Azure documentation or their support. Once you have this, you can check connectivity with a simple test, curl handles ldap(s):// URLs, you could for example do a
I am able to authenticate the user but not the role assigned to it in role_mapping.yml file. Getting following error
{"error":{"root_cause":[{"type":"security_exception","reason":"action [cluster:monitor/main] is unauthorized for user [sanket07@detaropwmail2com.onmicrosoft.com]"}],"type":"security_exception","reason":"action [cluster:monitor/main] is unauthorized for user [sanket07@detaropwmail2com.onmicrosoft.com]"},"status":403}
AD Domain service : pros*.onmicrosoft.com
Azure AD default : detaropwmail2com.onmicrosoft.com
users:
name: sanket username: sanket07
I can only imagine that the DN of your user in your AD is notcn=sanket07,dc=prospera,dc=onmicrosoft,dc=com.
You need to figure out what the DN of your user is and use that in the configuration. The easiest way to do this is from within your Active Directory instance, so please try this first.
If you can't figure this out from AD, then you could enable extra logging in elasticsearch and specifically set
I have no idea what this question means. Please add necessary information and details in your questions, this will make it considerably easier for people in these forums to assist you.
B2C active directory allows users to login using identity providers like amazon, facebook etc.
I want to authenticate elasticsearch using these accounts and not the predefined users as I did it in active directory
It looks like Azure AD B2C can operate as an OpenID Connect Provider, so it looks like you could Elasticsearch's OpenID Connect authentication realm for this
Now i am able to redirect kibana to login page but getting below error in elasticsearch logs
[Elasticsearch] Authentication to realm saml1 failed - Provided SAML response is not valid for realm saml/saml1 (Caused by ElasticsearchSecurityException[SAML content is in-response-to _a5e013e54993435826399194d0d04aa0b87d685f but expected one of [_08363809bbcab6ae5fd6f32673a3eea7b38bec09] ])
[WARN ][o.e.x.s.a.AuthenticationService] [Elasticsearch] Authentication to realm saml1 failed - Provided SAML response is not valid for realm saml/saml1 (Caused by ElasticsearchSecurityException[Failed to parse SAML message]; nested: SAXParseException[cvc-complex-type.2.4.a: Invalid content was found starting with element 'IsPolicySpecificError'. One of '{"urn:oasis:names:tc:SAML:2.0:protocol":StatusDetail}' is expected.];)
You should share a larger part of the logs, preferably one that contains the message the Azure AD is sending , but this doesn't look like a SAML Response
I have no idea what reply URL is in the context of the "elasticsearch application in Azure" so I can't help with that. If you want to share more details and information we might get to the bottom of this, but this is not a standard piece of information we have the answer for ready..
This is the log generated when I try to signup , user is registered in active directory but
getting unable to authenticate user error on kibana dashboard
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.