Along our design and build phase. We have created many users and grant many permission to many dashboard. We would like to clean up our environment to know who have what access or roles? Anyone can advice where to start with and further zoom down? Thanks in advance
Hello @Whoami1980
Welcome to the Community!!
Could you please share the ELK version & what authentication the Kibana Users are using to login?
Thanks!!
HI TMNT . Our ELK is 8.19 . AD authentication
Hello @Whoami1980
Since this is AD i am not sure if there is an easy way to complete this exercise.
List all Elasticsearch roles :
GET /_security/role
List all Role Mappings (AD groups → roles):
GET /_security/role_mapping
I will ask AD team to give export of User/Roles assigned where it is ELK if you are using any naming convention in your Role Mapping to avoid users without no Roles assigned related to ELK.
Now you have list of users/roles assigned or mapped in AD…we have roles & its privileges in Elastic…you can map everything and tighten the roles looking at the complete data.
Thanks!!
1 Like