My company is configuring SSO using OIDC on AZURE, everything looks fine but whenever user tries to authenticate, it takes them back to the to the login page. I have checked the logs, there are no errors and there are no errors on the web interface as well.
I am suspecting role mapping issues, I have tried all the settings for role mapping but no result.
Below is my Config on elasticsearch.yml:
xpack.security.authc.realms.oidc.oidc1: order: 2 rp.client_id: "057b9390-a441-44f9-9275-44600dd52a77" rp.response_type: code rp.redirect_uri: "https://my-domain.com:5601/app/security/oidc/callback" op.issuer: "https://login.microsoftonline.com/9be35454-2258-4efc-85fb-3da619c8bdb3/v2.0" op.authorization_endpoint: "https://login.microsoftonline.com/9be35454-2258-4efc-85fb-3da619c8bdb3/oauth2/v2.0/authorize" op.token_endpoint: "https://login.microsoftonline.com/9be35454-2258-4efc-85fb-3da619c8bdb3/oauth2/v2.0/token" op.jwkset_path: "https://login.microsoftonline.com/9be35454-2258-4efc-85fb-3da619c8bdb3/discovery/v2.0/keys" op.endsession_endpoint: "https://login.microsoftonline.com/9be35454-2258-4efc-85fb-3da619c8bdb3/oauth2/v2.0/logout" rp.post_logout_redirect_uri: "https://my-domain.com:5601/security/logged_out" claims.principal: sub
xpack.security.authc.providers: oidc.oidc1: order: 0 realm: "oidc1" description: "Log in with your account" basic.basic1: order: 1
I also enable trace logging on cluster settings, but I have not seen any logs. Is there a way to check the logs for this error?