hello everyone,
i am attempting to run search guard with elastic search but no matter what I have tried from the suggestions I found while googling I could not solve it. So i decided to ask here.
Here is the error i receive
elasticsearch_1 | [2019-03-12T12:09:26,517][INFO ][c.f.s.p.PrivilegesEvaluator] [qQekPb0] No index-level perm match for User [name=logstash, roles=[logstash], requestedTenant=null] Resolved [aliases=, indices=[my_index], allIndices=[my_index], types=, isAll()=false, isEmpty()=false] [Action [indices:admin/create]] [RolesChecked [sg_own_index, sg_logstash]]
elasticsearch_1 | [2019-03-12T12:09:26,523][INFO ][c.f.s.p.PrivilegesEvaluator] [qQekPb0] No permissions for [indices:admin/create]
logstash_1 | [2019-03-12T12:09:26,739][INFO ][logstash.outputs.elasticsearch] retrying failed action with response code: 403 ({"type"=>"security_exception", "reason"=>"no permissions for [indices:admin/create] and User [name=logstash, roles=[logstash], requestedTenant=null]"})
logstash_1 | [2019-03-12T12:09:26,741][INFO ][logstash.outputs.elasticsearch] retrying failed action with response code: 403 ({"type"=>"security_exception", "reason"=>"no permissions for [indices:admin/create] and User [name=logstash, roles=[logstash], requestedTenant=null]"})
logstash_1 | [2019-03-12T12:09:26,744][INFO ][logstash.outputs.elasticsearch] retrying failed action with response code: 403 ({"type"=>"security_exception", "reason"=>"no permissions for [indices:admin/create] and User [name=logstash, roles=[logstash], requestedTenant=null]"})
logstash_1 | [2019-03-12T12:09:26,744][INFO ][logstash.outputs.elasticsearch] Retrying individual bulk actions that failed or were rejected by the previous bulk request. {:count=>3}
https://pastebin.com/raw/FEXS0KAZ
logstash.conf -> https://pastebin.com/raw/RpseY5Et
filebeat.yml -> https://pastebin.com/raw/7Zm869Ww
sg_roles.yml -> https://pastebin.com/raw/vmV2kuE8
any ideas what it might be wrong?