How to implement document level security based on ldap groups

Yello · September 27, 2018, 8:39pm

I'm trying to find out how to implement document level security based on ldap groups.I have installed xpack plugin and configured ldap realm in elastic search.yml file successfully. Login /out is working based on ldap userid/password through kibana. However I'm looking for authorization of users based on ldap group they are in. User can be in multiple groups. For example if a document has permissions for users in group1,group2. So any user in ldap group1 should be able to access that particular document. user is recognized based on userid/username.
Is it possible to get all ldap groups/roles of a user based on userid/username

Thanks

system · October 25, 2018, 8:39pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Having issues mapping roles to users in nested LDAP groups Elasticsearch	7	3503	August 17, 2017
Document level security at indexing Elasticsearch	2	584	February 2, 2017
Creating grroup in Elasticsearch Elasticsearch elastic-stack-security	8	390	June 24, 2019
X-Pack & LDAP user group role mapping Elasticsearch	12	2663	April 26, 2018
Ldap Realm elasticsearch 5.4 Elasticsearch	2	827	August 18, 2017

How to implement document level security based on ldap groups

Related topics