I’m trying to do login in Kibana using Azure ID and OpenID but the Azure login create a loop.
Does anyone have any idea what can cause the problem?
Could you try to set in openid_auth_domain the below settings.
http_enabled: true (instead of enabled:true)
Do you see any errors in ES logs?
What ODFE version are you running?
When it fails to authenticate it can end up in these kind of loops. I would expect that the problem gets logged in elasticsearch logs. I think when I had an issue like this it was because the elastic nodes did not have a route to my openid servers (and my subject_key was wrong). Also is
@pablo I tryed to change http enable and transport config but doesn’t work.
My ODFE version 220.127.116.11
About the logs, it doesn’t have relevant informations, I need to active somenting?
Thanks for helping guys
Try to follow the ODFE documentation and enable either debug or trace logging. Trace will provide more verbose output.
Documentation for Open Distro, the community-driven, 100% open source distribution of Elasticsearch OSS with advanced security, alerting, deep performance analysis, and more.
Sorry for my delay. ES log have this message: [2021-06-01T20:27:45,668][WARN ][c.a.o.s.h.HTTPBasicAuthenticator] [teste-kibana] No ‘Basic Authorization’ header, send 401 and ‘WWW-Authenticate Basic’
ES log have this message: [2021-06-01T20:27:45,668][WARN ][c.a.o.s.h.HTTPBasicAuthenticator] [teste-kibana] No ‘Basic Authorization’ header, send 401 and ‘WWW-Authenticate Basic’
Hello, we are having the same problem.
We are installing Wazuh on docker-compose, which has the opendistro containers. Our oidc provider is keycloack.
if anyone knows how to fix it, that would be great, thanks