Security Exception on Discover Page 7.9.1

mchakradeo · September 20, 2020, 4:48pm

We upgraded yesterday to ELK 7.9.1 and now our user’s keep getting the following error on all pages of Kibana:

[security_exception] no permissions for [indices:data/read/async_search/submit] and User [name=XX@XX, backend_roles=[YY, ZZ], requestedTenant=null]

This is a huge blocker for us. Any help is appreciated.
Thank you!

Versions:
ELK: 7.9.1
Searchguard: 7.9.1-45.1.0
Searchguard Kibana Plugin: search-guard-kibana-plugin-7.9.1-45.1.0

cstaley · September 21, 2020, 7:15am

We would need more information on the permissions configured for the affected users.

Generally, you should take care that all users which need to access indexes via Kibana have the SGS_CLUSTER_COMPOSITE_OPS_RO cluster permission.

mchakradeo · September 21, 2020, 2:58pm

Thanks for your response. Looks like adding that permission worked

Topic		Replies	Views
Indices:data/read/async_search/submit error Search Guard	8	1253	June 24, 2020
No permissions for [indices:data/read/search] Search Guard	4	2661	January 2, 2023
Discover: no permissions for [indices:data/read/search] and User [name=user, roles=[]] Search Guard	0	995	January 16, 2019
getting index-level permission issue in searchguard 6.0.0 Search Guard	1	484	January 25, 2018
Search guard kibana not working. Search Guard	4	428	January 25, 2018