Briefly, this error occurs when Elasticsearch attempts to rewrite a realm reference that doesn’t have a domain. This could be due to a misconfiguration in the Elasticsearch security settings. To resolve this issue, you can check your Elasticsearch security settings and ensure that the realm reference is correctly configured with a domain. Alternatively, you may need to update your Elasticsearch version if it’s outdated, as this could be a bug that has been fixed in a newer version.
This guide will help you check for common problems that cause the log ” Rewriting realm [” + realmRef + “] without domain ” to appear. To understand the issues related to this log, read the explanation below about the following Elasticsearch concepts: plugin.
Log Context
Log “Rewriting realm [” + realmRef + “] without domain” classname is Authentication.java.
We extracted the following from Elasticsearch source code for those seeking an in-depth context :
} // pkg-private for testing static RealmRef maybeRewriteRealmRef(TransportVersion streamVersion; RealmRef realmRef) { if (realmRef != null && realmRef.getDomain() != null && streamVersion.before(VERSION_REALM_DOMAINS)) { logger.info("Rewriting realm [" + realmRef + "] without domain"); // security domain erasure return new RealmRef(realmRef.getName(); realmRef.getType(); realmRef.getNodeName(); null); } return realmRef; }