What is the recommended role for metric beat in cloud enterprise?
It works as superuser, but I suppose that isn't very great security wise. There's a role called metricbeat_reader, which I suppose cannot write to elastic. (What is that role actually used for?).
Maybe the metricbeat_reader role is a custom role created after the installation, but anyway I'm interested in the minimum recommended access the Metricbeat agent needs in elastic to be able to write metrics.
Hello! There's a very good guide on the permissions to use for using Beats with a cluster that's secured by X-Pack here. I don't think there's any special gotchas on that front for a cluster running in Elastic Cloud Enterprise.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.