search

elastic / kibana

Your window into the Elastic Stack
https://www.elastic.co/products/kibana
Other
19.72k stars 8.14k forks source link

[License Management] Gold license upload fails on non secured clusters #105472

Open yuliacech opened 3 years ago

yuliacech commented 3 years ago

Kibana version: 7.14.0 BC2 Elasticsearch version: 7.14.0 BC2 Server OS version: macOS Catalina Browser version: Version 91.0.4472.114 (Official Build) (x86_64)

Original install method (e.g. download page, yum, from source, etc.): Download from a build candidate page Describe the bug: When the traffic between Kibana and Elasticsearch is not encrypted, Kibana will fail when a Gold or higher license is uploaded via License Management. When a secure connection is setup (TLS and encyption keys), everything works.

Steps to reproduce:

  1. start Kibana with ./bin/kibana from Kibana installation folder
  2. start Elasticsearch with ./bin/elasticsearch from Elasticsearch installation folder
  3. Navigate to License Management and upload a license file for a Gold or higher license

Expected behavior: Kibana should not fail and inform the user that Gold and higher license requires a secure connection between Kibana and Elasticsearch.

Screenshots (if relevant): Screenshot 2021-07-13 at 19 08 05

Errors in browser console (if relevant): Failed to load resource: the server responded with a status of 503 (Service Unavailable) Provide logs and/or server output (if relevant):

  log   [19:07:36.774] [warning][plugins][securitySolution] Unable to verify endpoint policies in line with license change: failed to fetch package policies: missing authentication credentials for REST request [/.kibana_7.14.0/_search?from=0&rest_total_hits_as_int=true&size=100]: security_exception: [security_exception] Reason: missing authentication credentials for REST request [/.kibana_7.14.0/_search?from=0&rest_total_hits_as_int=true&size=100]
  log   [19:07:36.801] [error][authentication][plugins][security] License is not available, authentication is not possible.
  log   [19:07:36.805] [warning][licensing][plugins] License information could not be obtained from Elasticsearch due to {"error":{"root_cause":[{"type":"security_exception","reason":"missing authentication credentials for REST request [/_xpack?accept_enterprise=true]","header":{"WWW-Authenticate":"Basic realm=\"security\" charset=\"UTF-8\""}}],"type":"security_exception","reason":"missing authentication credentials for REST request [/_xpack?accept_enterprise=true]","header":{"WWW-Authenticate":"Basic realm=\"security\" charset=\"UTF-8\""}},"status":401} error

Any additional context:

elasticmachine commented 3 years ago

Pinging @elastic/kibana-stack-management (Team:Stack Management)

elasticmachine commented 2 days ago

Pinging @elastic/kibana-management (Team:Kibana Management)