Kibana embeded

I have a kibana instance embedded in an iframe for ease of use in an secondary application but everytime my users log in they get a popup saying "Unable to update the UI setting" "the server requires a client certificate".

The user can log in with their credentials (tied to an ldap realm) or with a pki but either method seems to give this popup. I have certificate authentication ssl.client_authentication: optional set to this for http and transport so the user should not have to provide a cert.

I do not get this message for native user accounts, only accounts authenticated via ldap, I also no longer get this message when in full screen on safari but does randomly come back again?

What am i missing?
Screenshot 2021-08-30 at 22.14.23

cc @oleg might know more and will answer when he gets a chance.