Unable to authenticate roles for ldap users

sanket07 · October 22, 2019, 9:56am

I am able to authenticate the user but not the role assigned to it in role_mapping.yml file. Getting following error

{"error":{"root_cause":[{"type":"security_exception","reason":"action [cluster:monitor/main] is unauthorized for user [sanket07@detaropwmail2com.onmicrosoft.com]"}],"type":"security_exception","reason":"action [cluster:monitor/main] is unauthorized for user [sanket07@detaropwmail2com.onmicrosoft.com]"},"status":403}

AD Domain service : prospera.onmicrosoft.com
Azure AD default : detaropwmail2com.onmicrosoft.com
users:
name: sanket username: sanket07

role_mapping.yml

superuser:
  - "cn=sanket07,dc=prospera,dc=onmicrosoft,dc=com"

elasticsearch.yml

xpack:
  security:
    authc:
      realms:
        active_directory:
          my_ad:
            order: 0
            domain_name: prospera.onmicrosoft.com
            files:
              role_mapping: "/etc/elasticsearch/role_mapping.yml"

ikakavas · October 22, 2019, 11:12am

@sanket07 can you close this since your issue was resolved in Azure active directory integration with elasticsearch ?

In general, please dont open multiple topics for the same issue.

system · November 19, 2019, 11:27am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Active Directory Role Mapping in the role_mapping.yml file Elasticsearch	2	1009	May 31, 2018
Roles in role_mapping.yml not assigned to ad user Elasticsearch	4	3156	June 12, 2017
Try to define an admin role (used setting similar to superuser) but not work Elasticsearch elastic-stack-security	3	1833	August 13, 2019
Authentication against Active Directory Elasticsearch	2	732	March 10, 2020
LDAP - Authentication works, Authorization doesn't Elasticsearch elastic-stack-security	7	2563	July 6, 2017

Unable to authenticate roles for ldap users

Related topics