I'm in the same exact boat: fresh install of ES and Kibana through DEB on a remote Ubuntu 16.04 machine.
What I've gathered so far is that this seems to relate to the X-Pack licence now shipping in 6.3. In previous versions this error could appear if the licence expired, but X-Pack basic is free now so this shouldn't be the case.
When I do a GET to _xpack/security this is the response
GET "http://127.0.0.1:9200/_xpack/security/_authenticate?pretty"
{
"error" : {
"root_cause" : [
{
"type" : "security_exception",
"reason" : "current license is non-compliant for [security]",
"license.expired.feature" : "security"
}
],
"type" : "security_exception",
"reason" : "current license is non-compliant for [security]",
"license.expired.feature" : "security"
},
"status" : 403
}
And querying the X-Pack licence API get me this:
GET "http://localhost:9200/_xpack/license"{
"license" : {
"status" : "active",
"uid" : "a5100a6a-cce1-4d51-b197-97fc2304e50a",
"type" : "basic",
"issue_date" : "2018-06-20T22:13:12.053Z",
"issue_date_in_millis" : 1529532792053,
"max_nodes" : 1000,
"issued_to" : "elasticsearch",
"issuer" : "elasticsearch",
"start_date_in_millis" : -1
}
}
I have tried setting xpack.security.enabled: false in elasticsearch.yml as some older posts have recommended, but all that did was chance the status from a 403 to a 404.