Tenant Kibana as BI

We are considering using the ELK stack for a project that needs to provide BI capabilities to clients. To ensure security, we plan to implement RLS (Row-Level Security) and FLS (Field-Level Security), so clients only see their own data.

We would like to know if the following is possible:

  • Create users with completely isolated environments. When a client accesses Kibana, they should have no awareness of other users, as if the environment were exclusively theirs.
  • Clients should have read-only access to all available data.
  • Prevent clients from creating reports, allowing them only to view the ones made available to them.
  • Enable us (admins) to create reports and assign them to specific clients.
  • Optionally, allow clients to access Kibana without needing a username and password, by providing access through our admin panel. This would involve generating a link that guarantees their entry directly.