How to manage the permission of indices

talon · August 14, 2018, 12:44pm

Hi
I have a requirement
i have enable SAML authentication in ELK, i have assigned user in different group on the AD side.
so the SAML attributes contain the group message of user.
so i want to assigned user different permission to access the indices.
for example
group A only have the read permission of index"helloworldA"
group B have the read and write permission of index "hellowroldA"

group C only have the read permission of index"helloworldB"
group D have the read and write permission of index"hellowroldB"

can you tell me how to configure it.

magnusbaeck · August 14, 2018, 1:52pm

This isn't a Logstash question. I suggest you edit your post and move it to the X-Pack category.

TimV · August 15, 2018, 1:12am

You need to create a role for each of the different sets of permissions you want.
In your case it looks like you need 4 roles.

Then you use role mapping to assign different roles based on the SAML attributes.
Haven't we already discussed this?

Topic		Replies	Views
ELK - How to provide permission to individual user on particular index Elasticsearch elastic-stack-security	2	437	August 13, 2019
Permission to give permission to Indices Elasticsearch elastic-stack-security	5	2878	February 26, 2021
Alter Index so every user can see it Elasticsearch	2	193	October 21, 2023
Roles with different access to index'ss Elasticsearch elastic-stack-security	3	333	September 29, 2022
Automatically create role based on index Elasticsearch elastic-stack-security	4	778	October 24, 2019

How to manage the permission of indices

Related topics