I'm currently configuring the LDAP on my coordinator & Kibana nodes (8.8.1)
Here are the steps I've taken:
- Tested the connection with the LDAP server on my coordinator, and it's successful.
- Configured my
elasticsearch.yml
and modified therolemapping.yml
file.
Here's the conf i added :
xpack.security.authc.realms.ldap.ldap1:
order: 1
url: "ldap://X.X.X.X"
bind_dn: "cn=X,ou=X,dc=X,dc=X,dc=X"
bind_password: "XXXXXXX"
user_search.base_dn: "ou=ctech,dc=zadm,dc=lab,dc=acms"
user_search.filter: "(cn={0})"
group_search.base_dn: "dc=X,dc=X,dc=X"
group_search.filter: "(member={0})"
files:
role_mapping: "/role_mapping.yml"
unmapped_groups_as_roles: false
- Checked the Elasticsearch logs, and there are no errors.
- In Kibana, here's the configuration I added :
elasticsearch.username: "cn=X,ou=Xdc=X,dc=X,dc=X"
elasticsearch.password: "XXXXXXXX"
xpack.security.authc.providers:
- ldap
- basic
- Here's the error I encountered:
[elasticsearch-service] Unable to retrieve version information from Elasticsearch nodes. security_exception
kibana[33260]: Root causes:
kibana[33260]: security_exception: unable to authenticate user [cn=X,ou=X,dc=X,dc=X,dc=X] for REST request [/_nodes?filter_path=nodes.*.version%2C>
kibana[33260]: [2024-01-05T10:24:10.351+01:00][INFO ][plugins.screenshotting.chromium] Browser executable: /usr/share/kibana/node_modules/@kbn/screenshotting-plugin/chromium/headless_s>