Watcher is getting http status code [401]

chaudharikiranp · October 2, 2015, 5:14pm

Hi, does anyone have the sample role configuration for watcher roles with shield. I can not see anywhere in the elasticsearch documentation the roles to be added for watcher in roles.yml. Very less information is available.
I installed shield first and then watcher. Ideally even though I installed watcher later the shield should have created the default roles in roles.yml but it didn't add any role. I tried to add the role 'watcher_admin' in the roles.yml file then created the user '_watcher_user' and make it admin in esusers realm but still getting 401 error while executing a watch.

Role added in roles.yml:
watcher_admin:
cluster: manage_watcher

User added:
./bin/shield/esusers useradd _watcher_user -p password -r watcher_admin

chaudharikiranp · October 2, 2015, 8:48pm

Nevermind, I think I resolved the issue.

warkolm · October 3, 2015, 11:52pm

What was the issue?

ksoucy · February 26, 2016, 8:44pm

Can you share what the issue was? I too am getting 401 errs even though i have same watcher role, have a user mapped to that role, and create my watchess with that user. Also tried using the __watcher_user (adding to es realm, mapping to role, and creating watches with that id), since that id was highlighted in the Watcher docs. Neither method works. THks!

Topic		Replies	Views
Watcher and Shield integration issue Elasticsearch elastic-stack-alerting	6	982	October 6, 2017
Assigning roles to allow watcher management Elasticsearch elastic-stack-security	2	629	July 19, 2019
Shield blocking Watcher to query in Elasticsearch Elasticsearch elastic-stack-security	3	1976	July 6, 2017
Watcher log return code 401 Elasticsearch elastic-stack-alerting	4	1891	July 6, 2017
Watcher webhook gives error 401 Authorization after certificate update Elasticsearch elastic-stack-alerting	2	483	July 11, 2023

Watcher is getting http status code [401]

Related topics