Hi,
I am getting “MISSING_PRIVELEGES” with “audit_request_privilege”: “indices:admin/get” in audit log when trying to use the Query Workbench with a readall user.
When adding “indices:admin/get” to the user, logging out and back in, the user still get the same audit log.
It seems like the privilege isn’t added/working so good or have I missed something?
Thank you @Anthony
I did just as you are describing but I didn’t remove the mapping to default readall role.
When that was done it’s working great.
Thank you very much!