In the online document - Configuring security in elasticsearch,
https://www.elastic.co/guide/en/elasticsearch/reference/current/configuring-security.html#
the step 7 is
Choose which types of realms you want to use to authenticate users.
- Configure an Active Directory realm.
- Configure a file realm.
- Configure an LDAP realm.
- Configure a native realm.
- Configure a PKI realm.
- Configure a SAML realm.
- Configure a Kerberos realm.
While in configure a file realm, I already added a user with user role, say, superuser. But the step 8 is : Set up roles and users to control access to Elasticsearch. For example, to grant John Doe full access to all indices that match the pattern events*
and enable him to create visualizations and dashboards for those indices in Kibana, you could create an events_admin
role and assign the role to a new johndoe
user.
Do I still need to do so after I already added a user by elasticsearch-users tool which adds an item in both ES_PATH_CONF/users file and ES_PATH_CONF/users_roles file?