Indices:data/read/search exception

stecino · November 3, 2016, 7:12pm

Hello,

I am getting this in Kibana:

plugin:elasticsearch [security_exception] action [indices:data/read/search] is unauthorized for user [kibana-server]

XGET /_shield/user?pretty gives me this
{
"kibana-server" : {
"username" : "kibana-server",
"roles" : [ "kibana4_server" ],
"full_name" : null,
"email" : null,
"metadata" : { }
}

in my roles.yml on the ES data nodes, I have the following

The required permissions for the kibana 4 server

kibana4_server:
cluster:
- monitor
indices:
- names: '.kibana*'
privileges:
- all

XGET _shield/role?pretty gives me this

"kibana4_server" : {
"cluster" : [ "all" ],
"indices" : [ {
"names" : [ "*" ],
"privileges" : [ "all" ]
} ],
"run_as" : [ "test" ]
}

jaymode · November 4, 2016, 12:07pm

The first thing to do is to remove the duplicated roles. The role in the file is being used, but it looks like you want the role in the API to be used? If so, I would remove the role in the roles.yml file on all nodes.

Topic		Replies	Views
Action [indices:data/read/search[phase/query]] is unauthorized for user [kibana4_server] Elasticsearch elastic-stack-security	3	4615	July 6, 2017
Es-stack 8.1.0 - [security_exception] action [indices:data/read/search] Kibana elastic-stack-monitoring , docker	2	2748	April 23, 2022
[security_exception] action [indices:data/read/search] Elasticsearch elastic-stack-security	2	3971	July 29, 2019
Giving Select Index Pattern Access in Kibana to Users using Shield Kibana	8	2629	July 6, 2017
Kibana status is Red - security_exception Elastic Cloud Enterprise (ECE) elastic-stack-security	9	1898	February 26, 2020

Indices:data/read/search exception

The required permissions for the kibana 4 server

Related topics