Hi, I have a question that if I want many users in kibana has different privilege to fetch specified data such user1 can only access SRC_IP field is in 192.168.0.0/16 or DST_IP field is in 192.168.0.0/16 and user2 can only access SRC_IP field is in 192.100.0.0/16 or DST_IP field is in 192.100.0.0/16 .How can I do?
Hey @f26227279 if you set up field level or document level security in Elasticsearch, when the user queries the data from Kibana those privileges will be respected, and you can filter the documents or fields that the user is able to see.
Currently, users can either have read-only access or write access to all of Kibana's "saved objects" which includes Dashboards/Visualizations/Saved-Searches/etc. There is an ongoing effort to implement a more granular approach to access control which is discussed here
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.