Hey, I would like to ask about a few things that I couldn't find in the documentation (or maybe I missed it?).
Some background on my system, I'm currently running Elasticsearch Cluster on Docker containers with trial mode on.
In the future we are looking at the gold subscription (or maybe the platinum if we'll need replication) for the AD authentication but for now we are experimenting with the trial.
I'm using Active Directory Realm configured as such (redacted sensitive information):
cluster.name: "elastic-cluster" network.host: 0.0.0.0 xpack: security: enabled: true authc: realms: active_directory: my_ad: order: 0 domain_name: <domainname> url: ldap://<domainname>:389
- How can I add a new AD group and assign a role to it through the Kibana UI? is it possible? or it must be done through the role_mapping.yml file?
- Can I create a new role and export it to .yml format? let's say I created a role in the Kibana UI which has the needed permissions for a group, can I export this role to the .yml file format for automation purposes (so I can just add it to the file when I'm creating a new Elasticsearch cluster).
- How can I see which AD groups gets which role? i.e. I gave 4 groups the role of 'kibana_user' through the role_mapping file. can I see in the UI which groups have that role?
Thanks a lot,