Kibana SSO via Azure user unauthorized


(Nick) #1

Hello there

I'm currently trying to set up single sign-on via Azure.
If I log in with my test account I can pass the authentication but I get the following error message:

{"message":"action [indices:data/read/search] is unauthorized for user [stde-test@zde.onmicrosoft.com]: [security_exception] action [indices:data/read/search] is unauthorized for user [stde-test@zde.onmicrosoft.com]","statusCode":403,"error":"Forbidden"}

Where can I set up the rights for the user, which is not managed by Kibana?
Thanks in advance.


(kulkarni) #2

@Brandon_Kobel - can u please provide more insights into this ? Thanks
Rashmi


(Brandon Kobel) #3

Hey @rani, assuming that you're using SAML, have you configured your role mappings per https://www.elastic.co/guide/en/x-pack/current/saml-role-mapping.html?


(Tim Vernum) #4

You probably want

which is the up date version of those docs (the previous link is for 6.2)


(Nick) #5

Yes, I was looking for this.
Even though I was searching on the internet for a long time, I couldn't find this page.
Anyway, thanks to all of you for the kind help!


(system) #6

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.