Open Distro - ELK 7.1.1 - Add AD user to roles_mapping

Lalitha · October 16, 2019, 12:37pm

Hello,

This is our first time installing OSS, we are on 7.1.1. As per the docs, we enabled AD authentication and are able to login with our AD creds fine. We now need to setup authorization so the authenticated specific AD users can access what they need to. We don’t have roles in AD and not sure if we need the authz: section in the config.yml. As an initial test, we tried the following in the roles_mapping.yml and the authenticated AD user is able to view everything in the console :

Lalitha · October 16, 2019, 12:40pm

all_access:
reserved: false
backend_roles:

“admin”
users:
“*”
description: “Maps admin to all_access”

But when we replace the * with the AD user info, the AD user is not able to access anything in the console:
all_access:
reserved: false
backend_roles:

“admin”
users:
“CN=xxxx,OU=xxxx,OU=xxxx,DC=xxxx,DC=xxxx,DC=xxxx,DC=xxxx”
description: “Maps admin to all_access”

Any help would be greatly appreciated. THANKS!

Topic		Replies	Views
LDAP "User Authenticated" but no OpenDashboards acess Security	3	276	September 21, 2022
Open distro ldap authorization Security	2	517	June 9, 2021
Ldap backend roles Security	4	917	April 26, 2021
Setup permissions for AD user Security	1	363	February 22, 2021
Map LDAP Users to Admin Role Security	3	1716	April 30, 2021

Open Distro - ELK 7.1.1 - Add AD user to roles_mapping

Related Topics