Security

edit

The Elastic Stack security features enable you to easily secure a cluster. With security, you can password-protect your data as well as implement more advanced security measures such as encrypting communications, role-based access control, IP filtering, and auditing. For more information, see Secure a cluster and Configuring Security in Kibana.

There are security limitations that affect Kibana. For more information, refer to Security.

Required permissions

edit

The manage_security cluster privilege is required to access all Security features.

Users

edit

To create and manage users, go to the Users management page using the navigation menu or the global search field. You can also change their passwords and roles. For more information about authentication and built-in users, see Setting up user authentication.

Roles

edit

To manage roles, go to the Roles management page using the navigation menu or the global search field, or use the role APIs. For more information on configuring roles for Kibana, see Granting access to Kibana.

For a more holistic overview of configuring roles for the entire stack, see User authorization.

Managing roles that grant Kibana privileges using the Elasticsearch role management APIs is not supported. Doing so will likely cause Kibana’s authorization to behave unexpectedly.