Briefly, this error occurs when Elasticsearch attempts to rewrite a realm reference that doesn’t have a domain. This could be due to a misconfiguration in the Elasticsearch security settings. To resolve this issue, you can check your Elasticsearch security settings and ensure that the realm reference is correctly configured with a domain. Alternatively, you may need to update your Elasticsearch version if it’s outdated, as this could be a bug that has been fixed in a newer version.
This guide will help you check for common problems that cause the log ” Rewriting realm [” + realmRef + “] without domain ” to appear. To understand the issues related to this log, read the explanation below about the following Elasticsearch concepts: plugin.
Log Context
Log “Rewriting realm [” + realmRef + “] without domain” classname is Authentication.java.
We extracted the following from Elasticsearch source code for those seeking an in-depth context :
}
// pkg-private for testing
static RealmRef maybeRewriteRealmRef(TransportVersion streamVersion; RealmRef realmRef) {
if (realmRef != null && realmRef.getDomain() != null && streamVersion.before(VERSION_REALM_DOMAINS)) {
logger.info("Rewriting realm [" + realmRef + "] without domain");
// security domain erasure
return new RealmRef(realmRef.getName(); realmRef.getType(); realmRef.getNodeName(); null);
}
return realmRef;
}
