AWS Security Issues

vmanjunath · April 9, 2024, 4:47pm

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):
I am using the latest version of OS. For security I have used AwsSdk2Transport . Below is the piece of code

return new OpenSearchClient(
                new AwsSdk2Transport(
                        httpClient,
                        HttpHost.create(openSearchEndpoint).getHostName(),
                        OPEN_SEARCH, Region.US_EAST_1,
                        AwsSdk2TransportOptions.builder().setCredentials().build()));

I was assuming this will internally uses InstanceProfileCredentialsProvider if there isno environment AWS credentials provided. But its not, I am getting error as “java.lang.Exception: org.opensearch.client.opensearch._types.OpenSearchException: Request failed: [security_exception] authentication/authorization failure”.

How can I user InstanceProfileCredentialsProvider using java for authentication (I am using IAM based authentication, so that refreshin token will be taken care by AWS). Please guide me to proceed further.

Describe the issue:

Configuration:

Relevant Logs or Screenshots:

pablo · April 16, 2024, 11:15am

@vmanjunath The OpenSearch can be integrated with AWS Cognito authentication. I’m not aware of such functionality with AWS IAM.

Topic		Replies	Views
AWS OpenSearch Service. Request failed: [security_exception] authentication/authorization failure Security troubleshoot , security-issue	1	1025	June 5, 2023
Trying to use Signing HTTP requests to Amazon OpenSearch Service, getting below error OpenSearch troubleshoot , security-issue	3	1896	March 9, 2023
AwsSdk2Transport, disable SSL and add interceptors OpenSearch Client Libraries opensearch-java	0	198	March 11, 2024
Opensearch Dashboards cannot connect to AWS OpenSearch Security configure	3	204	March 29, 2024
Issues setting up s3 bucket for snapshot repository using IAM Role OpenSearch configure	8	962	September 29, 2022

AWS Security Issues

Related Topics