elk无法通过active directory验证

k5hmc34c  于 2021-06-10  发布在  ElasticSearch
关注(0)|答案(0)|浏览(318)

我们有一个用docker运行的麋鹿服务器。我们在elk中进行了以下配置,以便用户可以使用activedirectory进行身份验证,但它不起作用
ElasticSearch.yml:

xpack.license.self_generated.type: trial
xpack.security.enabled: true
xpack.monitoring.collection.enabled: true
xpack:
  security:
    authc:
      realms:
        active_directory:
          my_ad:
            order: 1
            domain_name: xx.xxx.xxx.xxx
            url: ldap://xx.xxx.xxx.xxx:389

角色Map.yml

super_user:
  - "cn=admins,dc=sherpa,dc=uat"
user:
  - "cn=users,dc=example,dc=com"
  - "cn=admins,dc=example,dc=com"

我们在ElasticSearch日志中看到以下异常:
{“type”:“server”,“timestamp”:“2020-09-21t10:31:56123z”,“level”:“warn”,“component”:“o.e.x.s.a.authenticationservice”,“cluster.name”:“docker cluster”,“node.name”:“d05d9eaf29fe”,“message”:“对域my_ad的身份验证失败-身份验证失败(由ldapexception引起(resultcode=49(无效凭据)),diagnosticmessage='80090308:ldaper:dsid-0c090453,comment:acceptsecuritycontext error,data 52e,v3839\u0000',ldapsdkversion=4.0.8,revision=28812)),“cluster.uuid”:“bkpfgy2brwkawi16zz9awg”,“node.id”:“rfidcjcwttanbwserkwgw”}

暂无答案!

目前还没有任何答案,快来回答吧!

相关问题