Hi @ovreba,
I did some more digging, and it looks like the error only happens when the setting "plugins.security.restapi.roles_enabled: [all_access, security_rest_api_access]" is turned off.
Is the full reboot an option on your cluster (not the rolling one)? (NOTE: Review all nodes to ensure the setting is enabled on all opensearch.yml(s).)
{
"status": "FORBIDDEN",
"message": "No permission to access REST API: Role based access not enabled.. No client TLS certificate found in request"
}
