/_readonlyrest/metadata/current_user Data too large

Hi… After i updated Kibana to 7.8.1-1 and [email protected], users cant login. I get the following error.

error was: Server Error: 429 - for GET /_readonlyrest/metadata/current_user [parent] Data too large, data for [<http_request>] would be [6166482944/5.7gb], which is larger than the limit of [6120328396/5.6gb], real usage: [6166482944/5.7gb], new bytes reserved: [0/0b], usages [request=0/0b, fielddata=0/0b, in_flight_requests=0/0b, accounting=0/0b]

Any ideas ?

Wow! How many (LDAP?) groups are associated to the user?
Any stack trace available in ES logs?
Does it do this for all the users? Or only some?

Not sure… The"search_user_base_DN" is pretty big. Could that be a the issue?

No, theres no errors in ES.

All users, i think.

The issue is that the AD has a pretty bad user design. Users are spread across below OU’s.

UserGroup1=OU,DC=example,DC=org
UserGroup2=OU,DC=example,DC=org
UserGroup3=OU,DC=example,DC=org

So the search_user_base_DN has to be DC=example,DC=org which is the whole AD.
Does the search_user_base_DN setting take multiple values ?