[security 6.2.2] hide some visualizations and index patterns

dao · April 2, 2018, 9:08am

Hello,

I want to grant access to some users in kibana (security in x-pack). I create a role my_role with some index pattern I allow to my users.

I create some users with my_role+kibana_user+machine_learning_user

Now, the problem is that if I create some visualizations on other indices (with an other role), the users can see them. When they open it they are empty, but at least they see the name.

It is the same for the list of index patterns. They can see the full list, event the indices they do not have rights on.

How can I avoid this?

dao · April 3, 2018, 8:52am

Do you want I reformulate?

TimV · April 4, 2018, 1:58am

There is no way to avoid this in current versions of Kibana. Segregation of visualisations is a planned feature, but at the moment the only per-user security is on the underlying data, not the dashboards & visualisations, etc.

dao · April 4, 2018, 7:44am

Is it possible to deploy 2 instances of kibana with different kibana.index ? would it work modifying this property only?

in that case, the users and roles of x-pack are shared?

system · May 2, 2018, 7:45am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana multiple roles and visualize/dashboard list isolation Kibana	2	519	August 29, 2019
Limiting access to visualizations Kibana	4	797	May 15, 2018
Visualisation for Objects in kibana Kibana	2	356	October 9, 2018
Index pattern fields appearing for all users Kibana	2	357	September 21, 2018
Indices/dashboards etc names visibility for every user? Elasticsearch elastic-stack-security	5	1474	July 6, 2017

[security 6.2.2] hide some visualizations and index patterns

Related topics