I've tried the "feature control" on v7.2 and I'm able to restrict a role to a space and disable all the features except the "Advanced Settings". Unfortunately such a role would allow the user to access the ILM, index management, etc.. too (which I want to avoid). Objective is to let the user/role to just have the ability to manage the Security aspects.
Could someone please guide me to the index where the user & role information is stored in ElasticSearch. I could then ring fence a role to that particular index with just read and write permissions.
Would welcome other approaches too. Thanks!