We have created a sniffing connection pool to connect to the Elasticsearch cluster. Basic authentication is enabled so Elasticsearch user account details are included in the request. To provide the user with sufficient privileges we are adding the cluster privilege "monitor" to the user role. Is there any way we can restrict this further to only those privileges the user would need to connect to the connection pool? What are the minimum set of privileges that the user would need for this?
If you need any further information please let me know.