Granular Kibana permissions when creating users and roles

jhegarty · February 24, 2021, 6:25pm

My team needs to set up specific user access to Kibana, and we haven't quite figured out the combination of roles and space privileges. We need a user that has all the permissions of a superuser, with the exception of acessing/updating snapshots and repositories, and updating users/roles security settings. Ideally, we'd like them to be able to manage snapshots without the ability to create new repositories, but that's a pretty extreme degree of granularity and not essential.

Is there a way to do this through the Kibana users and roles UI?

Larry_Gregory · February 24, 2021, 6:52pm

Hey @jhegarty,

This should get you pretty close on the Elasticsearch side, although I haven't tested this extensively:

And then for Kibana, you'll want to grant All access to every feature across all spaces:

You may also want to grant the reporting_user role as well as the beats_admin role in order to get access to Kibana reporting and Beats Central Management.

system · March 24, 2021, 6:53pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Only access to Management Kibana: Spaces, Users and Roles Kibana	9	464	October 7, 2020
Create a role with only privileges to create new kibana space Kibana elastic-stack-security	3	127	May 9, 2024
Roles to support lowest privilege Kibana elastic-stack-security	9	709	December 16, 2021
Manage Users are Roles in Kibana w.r.t Spaces Kibana elastic-stack-security	2	326	September 23, 2019
Create user role with Kibana visualization permissions Kibana	3	1025	April 8, 2021

Granular Kibana permissions when creating users and roles

Related topics