Hi, Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):
I am using Opensearch, opensearch dashboards 2.7.0 in k8s environment.
Describe the issue:
I have enabled client_cert_auth in opensearch and configured opensearch.ssl.certificate and opensearch.ssl.key in opensearch dashboards.
Dashboards pod is able to communicate with opensearch with this, but when I try to reach /api/status endpoint with these certificates it’s giving 401 error.
(I am using nonadmin certificate here)
I have also tried configuring opensearch_security.allow_client_certificates: “true”
But with this setting also curl is throwing 401 error. If I use admin credentials instead then it works fine.
I don’t want to use opensearch_security.auth.unauthenticated_routes: [“/api/status”] as it’s a security violation. Please suggest a way forward.