I was trying to configure LDAP authentication on elasticsearch 7.9, using ROR plugin, after configuring everything I am getting following error log on making request to get indices
[2020-10-15T12:14:51,744][INFO ][t.b.r.a.l.AccessControlLoggingDecorator] [testOrg] FORBIDDEN by default req={ ID:142436850--1022892427#513, TYP:GetSettingsRequest, CGR:N/A, USR:testuser (attempted), BRS:true, KDX:null, ACT:indices:monitor/settings/get, OA:127.0.0.1/32, XFF:null, DA:127.0.0.1/32, IDX:*, MET:GET, PTH:/_cat/indices, CNT:<N/A>, HDR:Accept=*/*, Authorization=<OMITTED>, Content-Type=application/json, Host=localhost:9200, User-Agent=curl/7.58.0, content-length=0, HIS:[Require HTTP Basic Auth-> RULES:[ldap_auth->false], RESOLVED:[indices=*]] }
ldap configuration looks something like this
xpack.security.enabled: false
readonlyrest:
enable: true
access_control_rules:
- name: Require HTTP Basic Auth
type: allow
actions: ["*"]
indices: ["*"]
ldap_auth:
name: ldap1
groups: ["Groups"]
ldaps:
- name: ldap1
host: localhost
port: 389
ssl_enabled: false
ssl_trust_all_certs: true
search_user_base_DN: "ou=Users,dc=testOrg,dc=com"
search_groups_base_DN: "ou=Groups,dc=testOrg,dc=com"
user_id_attribute: "cn"
unique_member_attribute: "member"
It will be very helpful, if someone could point out what am I doing wrong.