Detection Custom Rule not working

Chatted a bit with @Frank_Hassanabad, and upon further inspection this doesn't appear to be related to #93325. This is an ES error bubbling up, similar to this other recent discuss.

Can you verify the following?

  • Are you seeing this error on any other pages within Kibana? Does navigating to Stack Monitoring show this error?
  • What version and type of deployment are you on?
  • Can you share the current user's role definition, and any configured document level security options that may be present?
  • Did this start happening after a specific configuration change, or addition of new rules? If so, can you provide more details as to what changes, or the rules in question?

We should be able to debug further with the above information -- thanks!

Garrett