FATAL ValidationError: child searchguard fails because audit is not allowed

Kosmonafft · August 11, 2020, 10:38am

Hi,

I need to debug the connection from keycloak to kibana. For that I would like to see all the details about the requests. But when I enable the corresponding settings in kibana.yml:

searchguard.audit.enable_request_details: true

I have following error:

FATAL ValidationError: child "searchguard" fails because ["audit" is not allowed]

How can I enable the logging of incoming request details?

Thanks

srgbnd · August 11, 2020, 11:24am

Because it is not a valid option in kibana.yml. Put it in elasticsearch.yml instead. Configuring Audit Logging | Security for Elasticsearch | Search Guard

system · September 1, 2020, 11:24am

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Audit log does not log trough Kibana Search Guard	5	446	October 15, 2020
Kibana, Searchguard & X-Pack Mointoring Search Guard	6	745	April 23, 2018
Kibana.yml config Search Guard	2	360	October 9, 2018
Keycloak Authentication and Searchguard problems Search Guard	5	2188	December 13, 2018
Search Guard v15 and Kibana Plugin v4 release - Critical security issue fixed Search Guard	0	348	August 8, 2017

FATAL ValidationError: child searchguard fails because audit is not allowed

Related Topics