Hi,
I have created a kibana Dashboard which our team will be using. As of now, everyone is able to view and edit the dashboards. Only I should be able to edit and rest of the team members should have read only access. I have installed Kibana and Elasticsearch both on RHEL 7.
Please help me in creating a read only mode for Dashboards.
Thank you in advance!
Regards,
Praveen
You can change the roles of the user accounts that your team will be using to read-only permissions for dashboards. https://www.elastic.co/guide/en/kibana/current/kibana-role-management.html
Hi Wylie,
For me it is not showing security option in the management. Attached is the screenshot for your reference.
Please help me with the steps to get the security option in Kibana. Thanks in advance!
Regards,
Praveeen
Security is at the bottom of the management section. It requires the free basic license.
as wylie said you have to enable basic security
here are some steps
https://www.elastic.co/blog/getting-started-with-elasticsearch-security
here are steps
shutdown everything (logstash/kibane/elasticsearch)
create certificate
/usr/share/elasticsearch/bin/elasticsearch-certutil cert -out /etc/elasticsearch/config/elastic-certificates.p12 -pass ""
chown -R elasticsearch:elasticsearch /etc/elasticsearch/config
copy this folder config on all your elastic cluster node
add these line to your /etc/elasticsearch/elasticsearch.yml file. on all nodes
xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.keystore.path: /etc/elasticsearch/config/elastic-certificates.p12
xpack.security.transport.ssl.truststore.path: /etc/elasticsearch/config/elastic-certificates.p12
start elasticsearch and setup password
setup the password
/usr/share/elasticsearch/bin/elasticsearch-setup-passwords interactive
may be restart your elasticsearch on all node again just to be safe
now on kibana
add following to kibana.yml
elasticsearch.username: "kibana"
elasticsearch.password: "kibana" (if password is different use that)
xpack.security.enabled: true
start kibana - use elastic/password(what ever you have set earlier) to login and you will have this options available.
now for logstash config file you have to use following in output section.
user => elastic
password => elastic
Thank you Sachin. Issue is resolved.
I have just added below lines to elasticsearch.yml file which resolved the issue.
xpack.security.enabled: true
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.
