OpenSearch Dashboard

Security
1

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):

Hello .

Currently I am having problems logging in to the OpenSearch dashboard.

After the installation was complete, I logged in using the default username and pass but it didn’t work. Can friends help with this issue?

Describe the issue:

Configuration:

Relevant Logs or Screenshots:

2

image

3

Hi @tayo ,

How did you deploy your cluster (what version of OpenSearch (OS) are you using?)?

Best,
mj

4

halo mantas …

I am currently installing OpenSearch Dashboards from an APT repository .

and the version I use is version opensearch-2.11.1 …

5

Hi @tayo,

Can you run the below and share the output please:

 curl -X GET https://<OS_node>:9200 -u 'admin:admin' --insecure

thanks,
mj

6

Could please you share your opensearch_dashboards.yml file as well?

7

I’ve tested it. and here are the results :slight_smile:

{
“name” : “p-fm-greylog-opensearch”,
“cluster_name” : “graylog”,
“cluster_uuid” : “y2b87FWVSFWvcR2KBFZNEA”,
“version” : {
“distribution” : “opensearch”,
“number” : “2.11.1”,
“build_type” : “deb”,
“build_hash” : “6b1986e964d440be9137eba1413015c31c5a7752”,
“build_date” : “2023-11-29T21:43:44.221253956Z”,
“build_snapshot” : false,
“lucene_version” : “9.7.0”,
“minimum_wire_compatibility_version” : “7.10.0”,
“minimum_index_compatibility_version” : “7.0.0”
},
“tagline” : “The OpenSearch Project: https://opensearch.org/
}

8

Hi @Mantas

Of course you can. Of course you can. The following is the opensearch-dashboard.yml config :

opensearch.hosts: [http://localhost:9200]

opensearch.ssl.verificationMode: none

opensearch.username: admin

opensearch.password: admin

opensearch.requestHeadersWhitelist: [authorization, securitytenant]

opensearch_security.multitenancy.enabled: true

opensearch_security.multitenancy.tenants.preferred: [Private, Global]

opensearch_security.readonly_mode.roles: [kibana_read_only]

# Use this setting if you are running opensearch-dashboards without https

opensearch_security.cookie.secure: false

9

even though I checked the documentation for the default username and password, admin: admin

10

Hi @tayo,

Could you run a test with the below (replace the opensearch-dashboard.yml with the updated version below and reboot your OpenSearch-dashboard`s server):

opensearch.hosts: [http://localhost:9200]

opensearch.ssl.verificationMode: none

opensearch.username: kibanaserver

opensearch.password: kibanaserver

opensearch.requestHeadersWhitelist: [authorization, securitytenant, 'security_tenant','Authorization']

opensearch_security.multitenancy.enabled: true

opensearch_security.multitenancy.tenants.preferred: [Private, Global]

opensearch_security.readonly_mode.roles: [kibana_read_only]

# Use this setting if you are running opensearch-dashboards without https

opensearch_security.cookie.secure: false

opensearch_security.auth.type: ['basicauth']

Thanks,
mj