Hi,
We have set up a dedicated monitoring cluster and saml/filebased authentication is setup for user authentication.
When I connect to kibana through file based authentication user(elk_user-username) and try to acess the monitoring tab,I am able to access the tab(same user is present in monitoring cluster as well and superuser/monitoring_user privs has been granted to the user).While for saml authentication I have granted monitoring_user privileges to all the AD groups present in both monitoring and production cluster.But still I get the below error while logging in through my id.
You are not authorized to access Monitoring. To use Monitoring, you need the privileges granted by both the kibana_user
and monitoring_user
roles.
If you are attempting to access a dedicated monitoring cluster, this might be because you are logged in as a user that is not configured on the monitoring cluster.
Please suggest if we can access the monitoring tab with saml authentication with our current setup.If Yes,any changes that has to be done in elasticsearch.yml file or please confirm if the user has to be present in monitoring cluster (through native realm/file based authentication) and we cannot access monitoring tab through saml authentication.
Thanks,
Aravind