No permissions for Snapshot

OpenSearch
1

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):

Describe the issue: After taking the snapshot of indices and when we tried to restore the snapshot of indices, im getting error as below

{
“error” : {
“root_cause” : [
{
“type” : “security_exception”,
“reason” : “no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]”
}
],
“type” : “security_exception”,
“reason” : “no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]”
},
“status” : 403
}

Configuration: POST /_snapshot/my-fs-repository/wazuh_snapshot/_restore

Relevant Logs or Screenshots:

image
image1359×497 21.7 KB

1 Like
2

@shivag If you took the snapshot with the global state than you must use admin certificate to restore the snapshot as the snapshot will also contain security plugin index.

3

I have not included the global state. still I am facing the issue.

Command used for taking snapshot:

curl -XPUT -k -u admin:opensearch123 "https://192.168.0.28:9200/_snapshot/snapshot_repository/latest_snapshot" -H "Content-Type: application/json" -d '
{
  "ignore_unavailable": true,
  "include_global_state": false,
  "partial": false
}
'

Command for restoring snapshot in same cluster:

curl -XPOST -k -u admin:opensearch123 "https://192.168.0.28:9200/_snapshot/snapshot_repository/latest_snapshot/_restore" -H "Content-Type: application/json" -d '
{
  "ignore_unavailable": true,
  "include_global_state": false,
  "include_aliases": false,
  "partial": false
}
'

Below is the error I am facing:

{"error":{"root_cause":[{"type":"security_exception","reason":"no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]"}],"type":"security_exception","reason":"no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]"},
4

I have also tried following command but still error remains same:

curl -XPOST -k -u admin:opensearch123 "https://192.168.0.28:9200/_snapshot/snapshot_repository/latest_snapshot/_restore" -H "Content-Type: application/json" -d '
{
  "ignore_unavailable": true,
  "indices": "-.opendistro_security",
  "include_global_state": false,
  "include_aliases": false,
  "partial": false,
  "rename_pattern": "(security-auditlog-2024.05.30)",
  "rename_replacement": "security-auditlog-2024.05.30_restored"
}
'

 curl -XPOST -k -u admin:opensearch123 "https://192.168.0.28:9200/_snapshot/snapshot_repository/latest_snapshot/_restore" -H "Content-Type: application/json" --key "/opt/opensearch/config/certs/node1-key.pem" --cert "/opt/opensearch/config/certs/node1.pem" --cacert "/opt/opensearch/config/certs/root-ca.pem" -d '
{
  "ignore_unavailable": true,
  "indices": "-.opendistro_security",
  "include_global_state": false,
  "include_aliases": false,
  "partial": false,
  "rename_pattern": "(security-auditlog-2024.05.30)",
  "rename_replacement": "security-auditlog-2024.05.30_restored"
}
'

Facing below error:

{"error":{"root_cause":[{"type":"security_exception","reason":"no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]"}],"type":"security_exception","reason":"no permissions for [] and User [name=admin, backend_roles=[admin], requestedTenant=null]"},"status":403}
5

Hey there, I am also facing the issue. I have not included global state, I have given all necessary permissions aswell. Please help me resolve this issue as soon as possible.

6

@Yuv Could you share your OpenSearch version?