How to create API Key for user with `viewer` role?

learningelastic · November 8, 2022, 4:51pm

Thank you. THe grant api key rest api worked. So basically I did this:

Login as elastic super user.
Go to Stack Management>Users.
Create the user apmuser with password mypassexample with role viewer.
Go to Dev Tools.
Paste this code to generate api key for the apmuser

POST /_security/api_key/grant
{
  "grant_type": "password",
  "username": "apmuser",
  "password": "mypassexample",
  "api_key" : {
    "name": "apmuser-key"
  }
}

On separate note, thanks for mentioning the point about Restricted Privileges in my earlier workflow, that it will still use the privileges of the superuser even if i change the role afterwards. Actually, can you point in me in the right direction on understanding the use cases for Roles vs. Roles Descriptors for API Keys? Why are there two paradigms for managing a user's capabilities?

Topic		Replies	Views
How to use manage_own_api_key privilege in elk Elasticsearch elastic-stack-security	1	894	October 12, 2020
API key owner Elasticsearch	9	973	December 31, 2023
Elasticsearch: Create API Key based on role? Elasticsearch elastic-stack-security	3	1750	March 15, 2022
API key Elasticsearch	1	496	October 26, 2018
Unable to create url using generated API Key Kibana	4	1288	January 13, 2021

How to create API Key for user with `viewer` role?

Related topics