Indices:data/read/search exception

stecino · November 3, 2016, 7:12pm

Hello,

I am getting this in Kibana:

plugin:elasticsearch [security_exception] action [indices:data/read/search] is unauthorized for user [kibana-server]

XGET /_shield/user?pretty gives me this
{
"kibana-server" : {
"username" : "kibana-server",
"roles" : [ "kibana4_server" ],
"full_name" : null,
"email" : null,
"metadata" : { }
}

in my roles.yml on the ES data nodes, I have the following

The required permissions for the kibana 4 server

kibana4_server:
cluster:
- monitor
indices:
- names: '.kibana*'
privileges:
- all

XGET _shield/role?pretty gives me this

"kibana4_server" : {
"cluster" : [ "all" ],
"indices" : [ {
"names" : [ "*" ],
"privileges" : [ "all" ]
} ],
"run_as" : [ "test" ]
}

jaymode · November 4, 2016, 12:07pm

The first thing to do is to remove the duplicated roles. The role in the file is being used, but it looks like you want the role in the API to be used? If so, I would remove the role in the roles.yml file on all nodes.

Topic		Replies	Views
Action [indices:data/read/search[phase/query]] is unauthorized for user [kibana4_server] Elasticsearch elastic-stack-security	3	4612	July 6, 2017
Es-stack 8.1.0 - [security_exception] action [indices:data/read/search] Kibana elastic-stack-monitoring , docker	2	2737	April 23, 2022
Kibana status is Red - security_exception Elastic Cloud Enterprise (ECE) elastic-stack-security	9	1893	February 26, 2020
Role Management - Access to 1 index only Elasticsearch	9	2869	June 27, 2018
[security_exception] action [indices:admin/mappings/get] is unauthorized for user [kibana] Kibana	2	1776	August 21, 2018

Indices:data/read/search exception

The required permissions for the kibana 4 server

Related Topics