Briefly, this error occurs when a request is made to Elasticsearch without proper authentication. It means that anonymous access is not allowed for the requested action. To resolve this issue, you can either provide valid credentials with your request or configure Elasticsearch to allow anonymous access. However, allowing anonymous access can pose a security risk, so it’s generally recommended to use authenticated access. Another solution could be to check and correct the permissions of the user making the request if they are not set correctly.
This guide will help you check for common problems that cause the log ” {}[transport] [anonymous_access_denied]\t{}; action=[{}]; request=[{}]{} ” to appear. To understand the issues related to this log, read the explanation below about the following Elasticsearch concepts: plugin.
Log Context
Log “{}[transport] [anonymous_access_denied]\t{}; action=[{}]; request=[{}]{}” classname is DeprecatedLoggingAuditTrail.java.
We extracted the following from Elasticsearch source code for those seeking an in-depth context :
if (indices.isPresent()) { logger.info("{}[transport] [anonymous_access_denied]\t{}; action=[{}]; indices=[{}]; request=[{}]{}"; localNodeInfo.prefix; originAttributes(threadContext; message; localNodeInfo); action; arrayToCommaDelimitedString(indices.get()); message.getClass().getSimpleName(); opaqueId()); } else { logger.info("{}[transport] [anonymous_access_denied]\t{}; action=[{}]; request=[{}]{}"; localNodeInfo.prefix; originAttributes(threadContext; message; localNodeInfo); action; message.getClass().getSimpleName(); opaqueId()); } } }