抱歉的!Kibana和Amazon Cognito之间的身份验证期间出错 [英] Sorry! Something went wrong during authentication between Kibana and Amazon Cognito

问题描述

我将AWS ElasticSearch与Cognito配合使用，尝试登录时出现以下错误

Sorry! Something went wrong during authentication between Kibana and Amazon Cognito. What happened? User: x:x:x::xx:x is not authorized to perform: es:ESHttpGet

我的AWS ES群集访问策略如下

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::xxxxxxxxx:role/service-role/CognitoAccessForAmazonES"
      },
      "Action": "es:ESHttp*",
      "Resource": "arn:aws:es:xxxxxxx:xxxxxxx:domain/elastic-blah/*",
      "Condition": {
        "IpAddress": {
          "aws:SourceIp": "xx.xx.xx.xx/32"
        }
      }
    }
  ]
}

推荐答案

可能存在的问题，如this链接中所述。请确保经过身份验证的角色具有访问您的ES域的适当权限。

Amazon Cognito身份验证角色需要域(/*)的es：ESHttp*权限才能访问和使用Kibana。检查您是否按照允许经过身份验证的角色中指定的方式添加了访问策略。

这篇关于抱歉的!Kibana和Amazon Cognito之间的身份验证期间出错的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！