My admin user has the kibana_access set to “admin” in the readonlyrest.yml and I’m using the enterprise KBN plugin but unable to delete an index via the Kibana UI. Additionally, I am not able to setup index lifecycle management as I get a forbidden in the elasticsearch logs. Is there some new setting with the newer versions that I need to change in my readonylrest.yml or how can I fix both these problems? Running 7.0.0 with the latest ROR plugins.
Hello Matt, next ROR version will allow admins to operate index management fully.
Can you try temporarily commenting “kibana_access: admin” for your admin user and verify it works?
Yes exactly. That would remove any access restriction on ES actions you can request.
The reason I’m asking you to do this is because I see that the log line you showed arrived to ES without any credentials.
If you come back saying that after commenting that line you can do what you wanted, we can pin point your issue was because of the too restrictive “kibana_access” rule for admins.
@sscarduzio I have the latest 1.20 release and am seeing a similar issue.
I see that in 1.20 you need to have kibana_access:admin in order to modify the access control rules in kibana but doing that means that I am restricted in my actions. In particular, it seems to block delete actions. Am I missing something?