SAML and ADFS: kibana can load when user belong to more than 1 group

i setup ADFS with SAML and kibana in ESS, and all work fine.

I added 2 more groups in AD:
KIbana Admins
KIbana Reader
KIbana Editor

those group are enabled in the relying party,

I create a role mapping for each of them.
It happend that my windows user is in both admin and editor, and i got
"kibana didnt load property"

Im trying to find something in the logs (im running Elasticsearch service)

i removed my user for the second AD group and now it is fine.
still trying to get the access error.

Can you share these ? What roles in the elastic stack do you map these AD groups to ? What are the role definitions for these roles ?

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.