I'm trying to setup a simple elastic stack. I have kibana running and two elasticsearch nodes, which seems to be working fine.
The elasticsearch nodes are setup with basic auth, however, I can't get the kibana part of it working.
Trying to access kibana sends a 401 and refresh header to "0;url=/login?msg=UNAUTHENTICATED&next=%2F" which loads, and immediately (ie. not UI is shown) sends a 302 to whatever was in the "next" parameter, which, of course, sets the same refresh header, causing a redirect loop.
This is my current kibana.yml
elasticsearch.hosts: ["https://elasticsearchurl:9200"] elasticsearch.username: elastic elasticsearch.password: XXXXXXXXXXXXXXXXXXXXX elasticsearch.ssl.certificateAuthorities: ["/etc/kibana/certs/ca.crt"] server.host: 172.16.3.5 logging.dest: /var/log/kibana.log logging.silent: false kibana.defaultAppId: discover xpack.security.authc.http.schemes: [basic]
Setting the basic auth header manually, using curl or something similar works, and doesn't set the refresh header.
Furthermore, since the url to access kibana is re-used from a previous installation, as well as username+password being the same, it actually worked when it was initially setup, since users basic auth sessions were still active.
What am I missing?