Elasticsearch CCR. Role mappings

Armen_Petrosyan · June 30, 2021, 6:25am

I configured Elasticsearch to work with mutual TLS authentication and authorization is done using pki realm.

While replication data between clusters (CCR) it uses transport layer, I have the same CA on both clusters, so authentication passes.

My question is, do I need create role mappings for leader and follower in case I am authorized using PKI realm or not?

Because when I used native realm with user/password - I had such mapping.

Thanks

system · July 28, 2021, 6:26am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cross cluster replication security. Mutual TLS query Elasticsearch ccr-cross-cluster-replication	1	372	July 27, 2021
Elasticsearch cross cluster replication, authorization and authentication Elasticsearch elastic-stack-security , ccr-cross-cluster-replication	2	479	August 26, 2020
CCR user permission issue. action [cluster:admin/settings/update] is unauthorized for user [my-certificate-cn] Elasticsearch ccr-cross-cluster-replication	5	716	August 18, 2021
Elastic CCR using Create Follower API Elasticsearch ccr-cross-cluster-replication	3	359	July 26, 2022
CCR user permission issue. [indices:admin/seq_no/renew_retention_lease] is unauthorized for user [ccr_user] Elasticsearch elastic-stack-security , ccr-cross-cluster-replication	5	857	July 21, 2021