You’re correct, the OpenDistro documentation doesn’t contain the anonymous authentication config.
Also, you’re correct that anonymous authentication could be the solution for you.
To enable anonymous authentication in ES and Kibana of ODFE stack, you have to set:
ODFE has the built-in
opendistro_security_anonymous user which has insufficient privileges to allow Kibana to connect with ES. Therefore you need to configure role and role mapping. Please find the example below.
- add following in role.yml
- add following in roles_mapping.yml
Please be aware that the above example gives admin access to the anonymous user. You can fine-tune this setting to suit your needs.
Also, there is a bug in ODFE where the default Kibana URL (https://kibana:5601) will lead you to the login screen. As a workaround please use https://kibana:5601/auth/anonymous.
This issue has been fixed in OpenSearch.