Kibana exposes index names with Shield

security

#1

Hi all,

hopefully it is only a configuration issue on my side ...

I'm currently setting up an ELK environment with Shield and therefore i've created a user role, which is restricted to one index (due to multi-tenancy reasons: 1 client - 1 index). Is the intended behaviour of Shield/Kibana, that the user is allowed to see all indices names in the cluster, even if the user has no access to it? For sure, the user can not see the content of the index, but still sees the index names. Is there a way to hide these index names to the user?


(Tanya Bragin) #2

Do you mean Kibana index patterns? At this time, there is no way to restrict access to views in Kibana or objects stored in the .kibana index, and index pattern is one of those objects. It's something we're definitely thinking about;


(system) #3