"authType is openid" error message

tolga · June 14, 2019, 11:41am

Hi ,
I get an exception when installing Kibana with OpenDistroSecurity plugin. I want to use OpenId Connect The log part and kibana.yml is bellow

Kibana.yml
elasticsearch.hosts: ${ELASTICSEARCH_HOSTS}
elasticsearch.username: ${ELASTICSEARCH_USERNAME}
elasticsearch.password: ${ELASTICSEARCH_PASSWORD}
elasticsearch.requestTimeout: 360000
elasticsearch.requestHeadersWhitelist: [“Authorization”, “security_tenant”]
# Kibana TLS Config
server.ssl.enabled: true
server.ssl.key: /usr/share/kibana/config/httpssl-key.pem
server.ssl.certificate: /usr/share/kibana/config/httpssl-crt.pem
server.ssl.keyPassphrase: ${KEY_PASSPHRASE}
elasticsearch.ssl.certificateAuthorities: /usr/share/kibana/config/httpssl-root-ca.pem
elasticsearch.ssl.verificationMode: “none”
opendistro_security.cookie.secure: true
opendistro_security.cookie.password: ${COOKIE_PASS}
opendistro_security.auth.type: “openid”
opendistro_security.openid.connect_url: “https://accounts.univera.com.tr/adfs/.well-known/openid-configuration”
opendistro_security.openid.client_id : “xxxx”
opendistro_security.openid.client_secret : “xxx”
opendistro_security.openid.root_ca: /usr/share/kibana/config/httpssl-root-ca.pem

kibana log part
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:45Z”,“tags”:[“plugins”,“debug”],“pid”:1,“plugin”:{“name”:“opendistro_security”,“version”:“6.7.1”,“description”:“Security features for kibana”,“main”:“index.js”,“homepage”:“https://github.com/opendistro-for-elasticsearch/security-kibana-plugin",“license”:“Apache-2.0”,“repository”:{“type”:“git”,“url”:“https://github.com/opendistro-for-elasticsearch/security-kibana-plugin”},“dependencies”:{“@elastic/kibana-ui-framework”:“0.0.11”,“bell”:“9.4.0”,“hapi-auth-cookie”:“^9.1.0”,“joi”:“10.6.0”,“js-yaml”:“^3.7.0”,“requirefrom”:“^0.2.0”,“wreck”:“14.x.x”},“devDependencies”:{“ui-select”:“^0.19.8”}},“message”:"Initializing plugin opendistro_security@6.7.1”}
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:45Z”,“tags”:[“error”,“security”],“pid”:1,“message”:“authType is openid”}
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:45Z”,“tags”:[“status”,“plugin:opendistro_security@6.7.1”,“info”],“pid”:1,“state”:“yellow”,“message”:“Status changed from uninitialized to yellow - Initialising Security authentication plugin.”,“prevState”:“uninitialized”,“prevMsg”:“uninitialized”}
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:45Z”,“tags”:[“openid”],“pid”:1,“message”:“undefined”}
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:46Z”,“tags”:[“server”,“uuid”,“uuid”],“pid”:1,“message”:“Setting new Kibana instance UUID: 3a0db7e1-0d0f-4eea-8692-e3e727d13ded”}
{“type”:“log”,“@timestamp”:“2019-06-14T11:14:46Z”,“tags”:[“status”,“plugin:opendistro_security@6.7.1”,“error”],“pid”:1,“state”:“red”,“message”:“Status changed from yellow to red - An error occurred during initialisation, please check the logs.”,“prevState”:“yellow”,“prevMsg”:“Initialising Security authentication plugin.”}

Anthony · April 15, 2021, 11:45am

@tolga Did you manage to resolve the issue? If not what version of odfe are you using?

Did you try to add below setting in kibana.yml
opendistro_security.openid.base_redirect_url

Topic		Replies	Views
OpenID Connect Authentication Issue Security	11	5424	September 14, 2020
Authentication failed on OpenDistro 0.10.0.0 with Keycloak 8.0.2 Security	1	871	April 22, 2021
Why does Kibana log says “Checking Elasticsearch version” error? Security	3	1229	April 19, 2021
Setting up SSL with OpenID Security	4	1974	July 16, 2021
Troubleshooting Security Plugin Issues Security	22	11425	May 20, 2020

"authType is openid" error message

Related Topics