I'm trying to secure Kibana access according to the company's restrictions.
The best authentication is to habilitate users and admin users from LDAP server.
The company did not accept to buy X-pack solution (Shield).
The only thing I have today is a basic .htpasswd (Nginx) file but the drawbacks of this solution are :
- No control on password complexity and regular changes
- New account for the user
- Admin have to manage accounts, passwords
Do you have any solution to set it in place ?
Kibana gets sensitive information and users must be authenticated !
Many thanks for your help.