Hi,
I’m using ldap authentication, and i can login on kibana in the begining but after half a day , the authentication fail for the same login-password, and restarting elasticsearch solve the problem until it happens again.
By doing a TCPDUMP no packet is sent to the windows server.
I’m using readonly rest pro 1.16.15 with elk 6.1.2.
is there some timeout or any tweak that can solve this problem?
Best Regards
Sami
Hi @slimsami!
Could you please try to set the cache ttl to zero? cache_ttl_in_sec
[ERROR][t.b.r.a.d.l.u.UnboundidAuthenticationLdapClient] LDAP getting user operation failed. LDAPSearchException: An error occurred while attempting to connect to server 10.XXX.XXX.XXX:3268: java.io.IOException: LDAPException(resultCode=91 (connect error), errorMessage=‘An error occurred while attempting to establish a connection to server /10.XXX.XXX.XXX:3268: AccessControlException(message=‘access denied (“java.net.SocketPermission” “10.XXX.XXX.XXX:3268” “connect,resolve”)’, trace=‘checkPermission(AccessControlContext.java:472) / checkPermission(AccessController.java:884) / checkPermission(SecurityManager.java:549) / checkConnect(SecurityManager.java:1051) / connect(Socket.java:584) / run(ConnectThread.java:146)’, revision=24201)’)
Hello,
I am also having this problem using Elastic v6.2.1 and ROR ES v1.16.16. My log entry matches slimsami’s as well. I have set cache ttl to zero and restarted elasticsearch, but will have to wait to see if it reoccurs.
Thanks,
Eric
Unfortunately, I did need to restart elasticsearch again due to LDAP failures.
Hi,
Thanks for the tip, I changed the cache ttl to zero and I’m waiting to see if it fix the problem.
Sami
This issue is currently under investigation. I have an idea, will implement it as soon as I get some confirmation feedback from the cache TTL = 0 workaround.
The workaround seems to be working, the error didn’t reoccurs. Thanks
Thanks @slimsami, I know what to do now 
The workaround does not appear to have resolved this for me, I still need to restart the service multiple times a day. Since it did work for sami, perhaps there is also another issue?
One other note, not sure if it matters, but it is configured to connect to two different LDAPs, sometimes one will stop working and the other will continue working fine for a while.
Actually, I took another look at today’s errors and it is slightly different at the end:
checkConnect(SecurityManager.java:1051) / connect(Socket.java:584) / connect(SSLSocketImpl.java:673) / connect(SetEnabledProtocolsSocket.java:125) / run(ConnectThread.java:146)’, revision=24201)’)
But everything else before that is the same.
Possibly the same as Issue #312.
Hi again, thin morning i’v got the same error again, it just took more time than before the modification.
Guys have you tried the builds I linked in #312?
Sorry i can’t try it now the package seems to need elk in 6.2.1 or 6.2.2 and i’m still in 6.1.2.
No problem @slimsami here you are
Hey @sscarduzio, I have updated ROR and things seem to be going good so far. I will keep an eye on it and see if any more errors occur. Thank you!