OpenSearch - "Index permissions" for the role do not restrict access to the index

I have created the domain in VPC form with enabled Fine-Grained with internal database configuration (non-Cognito).
Now, I was tried to make an additional user with limited permissions to a single index by following this tutorial: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/fgac-walkthrough-basic.html but in result:

I can see only documents matched by "FlightDelay": true rule
I can see anonymized Dest field
I still can use the _search/ query, though I have limited it by the pattern opensearch_dashboards_sample_data_fl* for search only on the opensearch_dashboards_sample_data_flights index

Additionally, I have checked the same rules and settings on my local OpenSearch (also as 1.2) and there everything works as I expected. Did I forget about something or is there anything else that I must do?

Themen

Serverlos Analysen

Relevanter Inhalt

Wie vermeide ich den Fehler „Unable to validate the following destination configurations“ bei Lambda-Ereignisbenachrichtigungen in CloudFormation?
AWS OFFICIALAktualisiert vor 3 Jahren
Wie behebe ich den Fehler „The specified queue does not exist or you do not have access to it.“, wenn ich einen AWS Glue Job ausführe, um Nachrichten an Amazon SQS in einer anderen Region zu senden?
AWS OFFICIALAktualisiert vor 3 Jahren
Wie behebe ich den Fehler „The new key policy will not allow you to update the key policy in the future“, wenn ich versuche, mit AWS CloudFormation einen AWS-KMS-Schlüssel zu erstellen?
AWS OFFICIALAktualisiert vor 2 Jahren
Wie kann ich den Fehler “Lambda does not have permission to access the ECR image...” (Lambda hat keine Berechtigung, auf das ECR-Image zuzugreifen...) für eine Lambda-Funktion mit einem Container-Image beheben?
AWS OFFICIALAktualisiert vor einem Jahr