ELK Platinum : Active Directory error

nityaraj06 · October 2, 2020, 11:35am

Hi I have added the following config in elasticsearch.yml

xpack:
security:
authc:
realms:
active_directory:
my_ad:
order: 0
domain_name: abcd.xyz.org
url: ldap://abcd.xyz.org:389
bind_dn: nitya.raj@abcd.xyz.org
`

I have also added the xpack.security.authc.realms.active_directory.my_ad.secure_bind_password for the bind_dn.

However, I am receiving this error -

[2020-10-02T13:12:39,827][WARN ][o.e.x.s.a.AuthenticationService] [elk.org] Authentication to realm my_ad failed - authenticate failed (Caused by LDAPException(resultCode=49 (invalid credentials), diagnosticMessage='80090308: LdapErr: DSID-0C090446, comment: AcceptSecurityContext error, data 52e, v2580 ', ldapSDKVersion=4.0.8, revision=28812))
Could someone guide me in this?

ikakavas · October 6, 2020, 3:34pm

This means that a bind to the AD failed because of wrong credentials. This can be caused either by the bind_dn or password being wrong, or because the username or the password of the user with which you attempt to authenticate is wrong. Can you enable debug logging with

curl -uelastic -XPUT '<your_fqdn>:9200/_cluster/settings?pretty' -H 'Content-Type: application/json' -d'
{
  "transient": {
    "logger.org.elasticsearch.xpack.security.authc.ldap": "TRACE"
  }
}

and also let us know how you are trying to authenticate ? What are you passing as a username ?

Topic		Replies	Views
Active Directory Realm Authentication Issue Elasticsearch	2	909	March 15, 2018
Elasticsearch Active-Directory Authentication Failure Elasticsearch elastic-stack-security	2	776	August 10, 2020
Elasticsearch Active Directory Configuration Errors- User authentication Elasticsearch elastic-stack-security	6	1718	January 19, 2021
LDAP Integration Not Working Elasticsearch elastic-stack-security	7	579	August 22, 2023
Authentication to realm active_directory failed Elasticsearch	7	5937	October 26, 2018

ELK Platinum : Active Directory error

Related topics