ES Version: 5.6.14
Enabled Modules: dlic-search-guard-authbackend-ldap-5.0-14-jar, dlic-search-guard-auth-http-kerberos-5.0-4-jar, dlic-search-guard-module-dlsfls-5.3-10-jar
JVM version and operating system version: JRE 1.8.0_161, Debian Jessie
I connected SearchGuard to our ActiveDirectory via LDAP. I defined the OU that contains my users as userbase and everything is working. (userbase: ‘OU=Admins,OU=Users,DC=domain,DC=local’)
Now a user which is in another OU (‘OU=Janitors,OU=Users,DC=domain,DC=local’) needs access to Elasticsearch.
Is it possible to define multiple userbases?