Hi all,
Today I was trying out ES-beta2.
Gave a fresh extract. Installed shield and license.
Then edited the configs of ES. All the roles and role mappings with elasticsearch config.
[BTW I am using LDAP backend]
Then I started ES. Then I started Kibana 4.2.0-beta1
Kibana Says:
log [12:19:48.304] [info][status][plugin:statusPage] Status changed from uninitialized to green - Ready
log [12:19:48.311] [info][status][plugin:table_vis] Status changed from uninitialized to green - Ready
log [12:19:48.323] [info][listening] Server running at http://0.0.0.0:5601
log [12:19:48.561] [error][status][plugin:elasticsearch] Status changed from yellow to red - [security_exception] action [cluster:monitor/nodes/info] is una
uthorized for user [kibana]
ES says:
[2015-09-22 12:19:56,112][INFO ][rest.suppressed ] /_nodes Params: {settings_filter=shield.hide_settings,shield.ssl.,shield.authc.realms.ldap1.bind_dn
,shield.authc.realms.ldap1.bind_password,shield.authc.realms.ldap1.hostname_verification,transport.profiles.default.shield.}
ElasticsearchSecurityException[action [cluster:monitor/nodes/info] is unauthorized for user [kibana]]
at org.elasticsearch.shield.support.Exceptions.authorizationError(Exceptions.java:45)
at org.elasticsearch.shield.authz.InternalAuthorizationService.denialException(InternalAuthorizationService.java:296)
at org.elasticsearch.shield.authz.InternalAuthorizationService.denial(InternalAuthorizationService.java:270)
Tried a lot of stuff none is helping.
At last tried to go with curl to see if everything was working.
pranav is my admin account in ES.
Just see what happens.
user@system ~
$ curl -XGET pranav:secret@localhost:9200/
{
"name" : "Spike Freeman",
"cluster_name" : "elasticsearch",
"version" : {
"number" : "2.0.0-beta2",
"build_hash" : "91726c3f7cf57336f2f304a5cdc738db3b817234",
"build_timestamp" : "2015-09-14T14:58:02Z",
"build_snapshot" : false,
"lucene_version" : "5.2.1"
},
"tagline" : "You Know, for Search"
}
user@system ~
$ curl -XGET pranav:secret@localhost:9200/_count?pretty
{
"error" : {
"root_cause" : [ {
"type" : "security_exception",
"reason" : "action [indices:data/read/search] is unauthorized for user [pr
anav]"
} ],
"type" : "security_exception",
"reason" : "action [indices:data/read/search] is unauthorized for user [pran
av]"
},
"status" : 403
}
Even after giving all permission something is going wrong with permissions.
roles.yml
# All operations on all indices
admin:
cluster: all
indices:
'*': all
Need help urgently. Please tell if you need any other details.