Kibana session doesn't expire in a expected time when proxy based authentication is enabled

shubha02 · March 24, 2020, 1:37pm

I have confgiured below two searchguard parameter for kibana under kibana_configmap_yml section.

configMaps:
kibana_configmap_yml: |-

searchguard.cookie.ttl: 300000
searchguard.session.ttl: 300000

When the Kibana UI session remains idle for 5 mins (as configured above) , and try to hit any tab in Kibana UI , the session is expected to expire - it should either redirect to the user login page or give an appropriate msg “Session expired”

The above parameters are not working as expected when proxy based authentication is enabled for Kibana.

Could you please suggest how Kibana session can be expired when proxy based authentication is enabled ?

Thanks
Subhashree

srgbnd · March 24, 2020, 3:44pm

The setting you used are valid only if the basic authentication is used Kibana Basic Auth | Security for Elasticsearch | Search Guard

In case of proxy, SeachGuard has no control over session. Look, there are no session related options for proxy authentication in the documentation HTTP Proxy Quick Start | Security for Elasticsearch | Search Guard

system · April 14, 2020, 3:44pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
searchguard.session.ttl seems not working in 6.5.4 Kibana. Search Guard	21	2531	August 7, 2019
Kibana + SearchGuard , session timeout Search Guard	0	378	August 14, 2017
Increase Kibana Timeout does not work Search Guard	9	1740	July 29, 2019
Searchguard.session.ttl and searchguard.cookie.ttl Search Guard	3	726	August 28, 2019
Session timeout Search Guard	6	1332	September 11, 2019

Kibana session doesn't expire in a expected time when proxy based authentication is enabled

Related Topics