Closed Neuroforge closed 5 years ago
If DNS is failing to resolve it likely isn't an issue with signing. Here are some possibilities:
Ok. So i made a new domain which is public.
When i open the endpoint in my browser i get....
{"Message":"User: anonymous is not authorized to perform: es:ESHttpGet"} EXCELLENT!!!
When i do the Ping via NEST it appears to now have a 403 error.
FailureReason: BadResponse while attempting HEAD on https://search-xxxxxxxxx.us-west-1.es.amazonaws.com/ Audit trail of this API call:
The access policy is as follows which i believe should allow read/write. Ping should work, unless i'm missing something.
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "AWS": "arn:aws:iam::xxxxxxxxx:user/QDNUser" }, "Action": "es:", "Resource": "arn:aws:es:us-west-1:xxxxxxxxx:domain/quench-es/" } ] }
The IAM user is configured to have AdministratorAccess which includes ElasticSearch Service Full Access.
You may be missing an asterisk at the end of the resource. See this example from these docs
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::123456789012:user/test-user"
]
},
"Action": [
"es:*"
],
"Resource": "arn:aws:es:us-west-1:987654321098:domain/test-domain/*"
}
]
}
Closing this (housekeeping)
Hello,
I am experiencing problems with AWS and Elastic Search using this client.
I have tried with the VPC endpoint and the Kinbana endpoint defined in the AWS Console for the Elastic Search Instance. Could you direct me as to what i am doing wrong?
NEST Version: 6.2 Elastic Search Version: 6.3
Code
I have tried to use _esConfig.DisableDirectStreaming();