Deny Active Directory user

guhan · March 30, 2022, 12:47pm

Hello,

Right now we have configured opensearch to connect to LDAP for authentication.
Only users belong to a particular role -“f-bld-00” are allowed to have all_access
Other users are configured with custom read-only role in roles.yml and they are able to login but cannot modify/save data.

so far all good.

Now we need to deny other users who do not belong to “f-bld-00” role. Is it possible to define custom role again called deny-login in Roles.yml and corresponding entry in roles_mapping.yml?
what should be entries / permissions for a deny role?

guhan · April 25, 2022, 5:47am

Hello,
Any suggestions from anyone regarding the same?

guhan · December 13, 2022, 8:17am

Hello there, is there any option for denying user login?

Topic		Replies	Views
Some Permission related queries Security discuss , troubleshoot	7	839	December 19, 2022
LDAP "User Authenticated" but no OpenDashboards acess Security	3	275	September 21, 2022
Roles and users Security configure	2	374	April 27, 2022
Unmapped groups as role Security	4	778	March 16, 2021
Problem with assigning a role for domain users OpenSearch troubleshoot , security-issue	4	277	June 22, 2023

Deny Active Directory user

Related Topics