Setup permissions for AD user

Hi, Im new to OpenDisto tied to setup the AD authorization and assign index permissions to AD users. Got stuck with that issue - local users work perfectly but struggling with the AD users:

Backend roles - created test_role and assigned users Json looks like this:

{
“backend_roles”: [
“test_role”
],
“hosts”: [
“*”
],
“users”: [
“CN=AD_user,OU=users,DC=domain,DC=com”,
“AD_user”,
“local_user”
]
}

Security role:

{
“index_permissions”: [
{
“index_patterns”: [
“logstash*”
],
“dls”: “”,
“fls”: ,
“masked_fields”: ,
“allowed_actions”: [
“read”,
“delete”,
“manage”,
“index”
]
}
],
“tenant_permissions”: ,
“cluster_permissions”: [
“cluster_composite_ops”
]
}

I have configured AD and able to login with AD permissions. But when local_user is able to see logs from logstash but the AD user gets permission error:
[security_exception] no permissions for [indices:data/read/search] and User [name=CN=AD_user…]