To implement ELK (Elastic search, Logstash and Kibana), we have used Amazon service Elasticsearch . For user access control, we used Amazon Cognito and users has been logged in successful to Kibana. Now my worry is that every user can access everything from Kibana. We want at least two roles in Kibana:
- ReadOnlyAccess
- FullAccess.
Is it feasible to get role based access control by using Amazon Cognito ?
After my investigation, I found that we can achieve it via “x-pack” plugin for role and user management but it require to change in Elasitcsearch (elasticsearch.yml) and Kibana (kibana.yml) but Amazon does not allow to make any change (no ssh access) there like RDS cluster.
Could you please suggest a solution for it.
Thanks and Regards,
Braham Pal Singh