We have been struggling with 401 unauthorized error for openID integration (Keycloak as IdP) for Kibana with openDistro security plugin
The authentication integration works fine for the 1st time. But once we restart the kibana we are getting the 401 unauthorized error. To make kibana work we need to delete the .kibana index every time we restart kibana.
We also observed that the security_authentication cookies is not getting created after the kibana restart which could be the cause of the 401 unauthorized error.
@Ajay Still looking into this, My local testing seems to indicate that the issue was introduced in 1.13.1, but was working fine in 1.13.0, as a temporary workaround have you tried 1.13.0?
@Anthony As a workaround we had downgraded the setup version to see if it works for older version.
Elasticsearch : 7.10.0
Kibana : 7.10.0
Opendistro : 1.12.0.0
But facing the same issue of 401 unauthorized after kibana restart.
We have not tried the ODFE 1.13.0 will check on that.
@Anthony Can you please provide the link for kibana_security_plugin-1.13.0.0. We are getting access denied when trying to download by changing the version number in plugin install URL.
We are able to install Opendistro_security_plugin for elasticsearch-1.13.0.0.
PS: We are having doubt about this working as it is not working for opendistro 1.12.0.0