I'm trying to configure our new cloud cluster (1e7502) and I would like to create a user that only has access to create indices and log data to them. Basically, for my FileBeat/MetricBeat/anyBeat agents.
I created a new role "DataLoggers", with no cluster privileges, no "run as" privileges, and one index privilege of "*" -> "all".
That user gets "403 Forbidden" errors when trying to log data.
What are the required privs for this?