So I have upgraded my elasticsearch cluster from 7.17.12 to 8.9 and my cluster is now up and running and in a green health state. When I start 8.9 Kibana I get the following error for multiple
[INFO ][savedobjects-service][.kibana] CREATE_REINDEX_TEML -> CREATE_REINDEX_TEMP [ERROR ][savedobjects-service][.kibana] Action failed with 'security_exception Root causes: security_exception: action[indices:admin/block/add] is unauthorized for user [XXX] with effective roles [superuser] on restricted indices [.kibana_7.17.12_001], this action is granted by the index privileges [manage,all]'.
I have tried reducing the hard disk usage to below thresholds as implied here: Locked Out of Kibana Superuser Can't Modify Index Settings but that hasn't done anything.
I've also looked into giving the specific index permissions in the
roles.yml file (the
allow_restricted_indices permission?) as the error complains about but I cannot figure out how to apply it to a user in the
role_mapping.yml (as I'm not using AD, just a simple username/password) and I'm not allowed to modify the superuser role on it's own. I'm not sure how to fix this as I've always used kibana to interact with the cluster and kibana will not start.
I'm also open to completely resetting/deleting the kibana part if needed, I haven't extensively used it yet.