In the log collection system i am designing I want to integrate with AD and map the inbuilt roles to AD roles.
Additional Elastic roles (and mapped equivalent AD roles)will be created based on the creation of new indexes. Each new index created will be associated with three AD roles read, write and administer and these will be assigned as appropriate. A user may have multiple roles assigned giving them an array of rights over a collection of indices.
I would very much appreciate an appraisal of this approach.