Kibana SSO via Azure user unauthorized

rani · December 10, 2018, 1:57pm

Hello there

I'm currently trying to set up single sign-on via Azure.
If I log in with my test account I can pass the authentication but I get the following error message:

{"message":"action [indices:data/read/search] is unauthorized for user [stde-test@zde.onmicrosoft.com]: [security_exception] action [indices:data/read/search] is unauthorized for user [stde-test@zde.onmicrosoft.com]","statusCode":403,"error":"Forbidden"}

Where can I set up the rights for the user, which is not managed by Kibana?
Thanks in advance.

rashmi · December 12, 2018, 9:57pm

@Brandon_Kobel - can u please provide more insights into this ? Thanks
Rashmi

Brandon_Kobel · December 12, 2018, 10:02pm

Hey @rani, assuming that you're using SAML, have you configured your role mappings per https://www.elastic.co/guide/en/x-pack/current/saml-role-mapping.html?

TimV · December 13, 2018, 6:25am

You probably want

https://www.elastic.co/guide/en/elastic-stack-overview/6.5/saml-role-mapping.html

which is the up date version of those docs (the previous link is for 6.2)

rani · December 17, 2018, 8:51am

Yes, I was looking for this.
Even though I was searching on the internet for a long time, I couldn't find this page.
Anyway, thanks to all of you for the kind help!

system · January 14, 2019, 8:51am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Azure Saml SSO Kibana elastic-stack-security	3	330	July 28, 2022
Azure AD SAML auth - 403 - Forbidden Elasticsearch elastic-stack-security	2	1340	July 13, 2019
Kibana SSO via Azure role permissions issue Kibana	1	99	October 19, 2023
Azure Active directory, SAML authentication Elasticsearch elastic-stack-security	6	2538	May 10, 2019
About user authentication: action [indices:data/read/search] is unauthorized for user Elasticsearch	4	12711	October 13, 2017

Kibana SSO via Azure user unauthorized

Related topics