Odd API requests after upgrade to 2.11.1

jong · December 22, 2023, 9:07am

I’ve just upgraded to Opensearch 2.11.1 and ever since the upgrade I am seeing some odd Usernames and requests in the audit log.

The usernames look something like this:

ACb6db1303639164c6fb0adc2f98b59d60
ACa7a1b52d235ed7189a6bce695a48d75d

and the paths they are accessing are

/api/4.0/edges
/api/v1/edge-clusters
/mgmt/tm/ltm

They all come from localhost 127.0.0.1 and ::1

They don’t look like OpenSearch URLs to me, but they started exactly when I upgraded from 2.9.0 to 2.11.1. Can anyone help me understand what these are and how to make them go away?

hm21 · December 22, 2023, 2:05pm

good question. would like to know also. have the same problem

Mantas · December 22, 2023, 2:06pm

Hi @jong,

How did you deploy your cluster? Is there by any chance IBM Edge Application Manager involved?

Best,
mj

Topic		Replies	Views
OpenSearch Dashboard Security troubleshoot	9	728	February 2, 2024
401 Errors in OpenSearch 2.11 OpenSearch	8	628	November 30, 2023
Status code 401 Unauthorized Authentication required Security	9	1583	August 14, 2024
Index state management abnormal executed OpenSearch troubleshoot	4	121	June 28, 2024
Security On opensearch Security	3	309	March 5, 2024

Odd API requests after upgrade to 2.11.1

Related topics