[security 6.2.2] hide some visualizations and index patterns

dao · April 2, 2018, 9:08am

Hello,

I want to grant access to some users in kibana (security in x-pack). I create a role my_role with some index pattern I allow to my users.

I create some users with my_role+kibana_user+machine_learning_user

Now, the problem is that if I create some visualizations on other indices (with an other role), the users can see them. When they open it they are empty, but at least they see the name.

It is the same for the list of index patterns. They can see the full list, event the indices they do not have rights on.

How can I avoid this?

dao · April 3, 2018, 8:52am

Do you want I reformulate?

TimV · April 4, 2018, 1:58am

There is no way to avoid this in current versions of Kibana. Segregation of visualisations is a planned feature, but at the moment the only per-user security is on the underlying data, not the dashboards & visualisations, etc.

dao · April 4, 2018, 7:44am

Is it possible to deploy 2 instances of kibana with different kibana.index ? would it work modifying this property only?

in that case, the users and roles of x-pack are shared?

system · May 2, 2018, 7:45am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.