Created users for the roles:admin,developer,kibana
Assigned the developer role user to the kibana role..
Now in kibana.yml file configured the KIbana role User..
Now when we logged in the user Other than Admin.
..We are getting Security Exception [indicesata/read/msearch] When there is No data for that Particular Date
So please Anyone help me Out How To solve This Issue..
I didn't think you could assign one role to another role. Do you mean you assigned the developer and kibana roles to a user?
In your kibana.yml you should have a user with a kibana_server role which I think is built-in role in your roles.yml. Do you have a kibana_server role?
Then you have a kibana user (not in the kibana.yml) which has needs some privileges on .kibana index as well as privs on the indexes which contain your data.
On my 4.6.0 Kibana instance I have this kibana server role which is only used in the kibana.yml file;
kibana4_server:
cluster:
- monitor
indices:
- names: '.kibana*'
privileges:
- all
- names: '.reporting-*'
privileges:
- all
and this kibana user role. In this case I have indices - names: '*' but that one could be 'dev*' or whatever you need. And for the indices that contain the data they need view_index_metadata and read.
But that kibanaUser role also includes '.kibana*' manage, read, and index ;
Could you please tell us which version of Kibana you are using?
I think there was an issue about Kibana not fully supporting index alias names. If rfc is an alias for some other index name, could you try using the actual name?
Another tip, if you paste the section of your roles.yml with three backticks ` before and after it it will be formatted in a more readable way;
I tried to use an index but I get the same output.
I read the issue related to Kibana and index alias and It seems the problem was solved; so, I'm not sure I'm having the same problem.
Perhaps I need additional privileges or they're the versions we have in our environment... I don't know.
Hi AB,
Your analytics_rfcUser role definition looks correct. What exactly happens when you log in as a user with that role?
One thing that can happen is that if there is a default index pattern that the new user doesn't have access to, they may see an error message about that index. But in that case you should be able to click OK on the error and continue.
It worked!!! The problem was, as you thought, the default index pattern. When I click on the error message and select another index pattern to which the user has privileges, kibana returns data correctly...
And it works with aliases too!!! This is great, because I use aliases all the time...
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.