Xpack - User unauthorized to to curl Health checks

Moritz_Kiesewetter · March 26, 2020, 8:42am

Hello guys,
i succesfully setup Xpack in my ELK-Cluster - now i have to get my monitoring to no throw any errors when checking

/_cluster/health?pretty

So i added a user called "checkmk" with the following command:

bin/elasticsearch-users useradd checkmk -p XXXXXXX -r monitoring_user,kibana_admin

I used the built-in roles from elasticsearch - i thought this might do it's thing - but everytime i try to authenticate with the user (after i restarted elasticsearch) i get the following error:

{"error":{"root_cause":[{"type":"security_exception","reason":"action [cluster:monitor/state] is unauthorized for user [checkmk]"}],"type":"security_exception","reason":"action [cluster:monitor/state] is unauthorized for user [checkmk]"},"status":403}[

Does anybody know what priviliges i have to grant the user to check this? I would not like to give him 'superuser' role.

I'm using ELK v 7.6 and i have not configured any roles on my own by now.

Thanks in advance!

Magnus_Kessler · March 26, 2020, 9:04am

You'll have to assign the built-in remote_monitoring_collector role to your checkmk user, or create a custom role with at least the monitor cluster privilege.

Moritz_Kiesewetter · March 26, 2020, 9:21am

Thanks for the fast solution!

system · April 23, 2020, 9:21am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Action [cluster:monitor/health] is unauthorized for user Elasticsearch elastic-stack-security	3	2060	October 8, 2019
Elasticsearch 7.8.0 user authentication with X-Pack security fails Elasticsearch elastic-stack-security	11	1347	October 27, 2020
Security_exeption Xpack Elasticsearch	4	3923	August 15, 2017
Unable to setup authentication using x-pack Elasticsearch	6	5626	May 16, 2017
Xpack File User is not authorized Elasticsearch	5	3492	April 5, 2017

Xpack - User unauthorized to to curl Health checks

Related Topics