Kibana SESSION_EXPIRED

mst3r25 · November 17, 2021, 9:09pm

I keep getting random SESSION_EXPIRED when after implementing PKI authentication. If I use username and password my session never expires. Sometime I am able to use PKI to log back in after the SESSION_EXPIRED, other times I have to close the browser or clear the cookies before I can log back in with PKI.

Elasticsearch 7.14
Kibana 7.14
Elasticsearch config
</>
xpack:
security:
authc:
token.enabled: true
realms:
pki:
pki1:
order: 1
delegation.enabled: true
truststore:
path: "my_truststore.p12"
</>
Kibana config
</>
server.ssl.clientAuthentication: optional
xpack.security.authc.providers:
pki.pki1:
order: 0
basic.basic1:
order: 1
xpack.security.session.idleTimeout: "5h"
xpack.security.session.lifespan: "24h"

I've also tried this below.

#xpack.security.authc.providers.pki.pki1.session.idleTimeout: "5h"
xpack.security.encryptionKey: "Something longer than 32 characters. I do have white spaces"
</>

tsullivan · December 2, 2021, 8:06pm

I'm not completely sure, but the problem could be related to this issue: Handle access tokens that expire after authentication stage · Issue #104893 · elastic/kibana · GitHub

system · December 30, 2021, 8:06pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Session Expired immediately after login Elasticsearch	1	775	October 2, 2019
Kibana - SESSSION_EXPIRED right after login Kibana	7	2586	July 19, 2017
Kibana sessionTimeout doesn't take effect Kibana elastic-stack-security	4	1308	March 19, 2019
Kibana session issues Kibana elastic-stack-security	9	1786	February 19, 2022
Session expiration Kibana	5	1233	May 13, 2021

Kibana SESSION_EXPIRED

I've also tried this below.

Related Topics