[User Impersonation with X-Pack] action [cluster:admin/xpack/security/user/authenticate] is unauthorized for user

Joao_Palma · October 15, 2019, 3:22pm

Hello,

I'm trying configure ELK with SSO (keycloak)..

I'm using this architecture but i got this error {"statusCode":403,"error":"Forbidden","message":"[security_exception] action [cluster:admin/xpack/security/user/authenticate] is unauthorized for user [nginx] run as [user1@mail.pt]"}

nginx have privilege run as user1 configured in a role! Can you help me?

Thanks

lukas · October 17, 2019, 8:34pm

@Brandon_Kobel or @Larry_Gregory Do you or someone on the security team have some insight here?

Brandon_Kobel · October 17, 2019, 9:16pm

@Joao_Palma can you share the role definitions for the nginx user?

Joao_Palma · October 18, 2019, 9:16am

Hello,
The error is the SSO, he send the email in forwarded username... I fix this, using a script in LUA

Thanks to everyone

system · November 15, 2019, 9:16am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.