NOTE: You are looking at documentation for an older release. For the latest information, see the current release documentation.
Grant users access to Heartbeat indices
editGrant users access to Heartbeat indices
editTo enable users to access the indices Heartbeat creates, grant them read
and view_index_metadata
privileges on the Heartbeat indices. If they’re
using Kibana, they also need the kibana_user
role.
-
Create a reader role that has the
read
andview_index_metadata
privileges on the Heartbeat indices.You can create roles from the Management > Roles UI in Kibana or through the
role
API. For example, the following request creates a role namedheartbeat_reader
: -
Assign your users the reader role so they can access the Heartbeat indices. For Kibana users who need to visualize the data, also assign the
kibana_user
role:-
If you’re using the
native
realm, you can assign roles with the Management > Users UI in Kibana or through theuser
API. For example, the following request grantsheartbeat_user
theheartbeat_reader
andkibana_user
roles:POST /_xpack/security/user/heartbeat_user { "password" : "YOUR_PASSWORD", "roles" : [ "heartbeat_reader","kibana_user"], "full_name" : "Heartbeat User" }
-
If you’re using the LDAP, Active Directory, or PKI realms, you assign the roles in the
role_mapping.yml
configuration file. For example, the following snippet grantsHeartbeat User
theheartbeat_reader
andkibana_user
roles:heartbeat_reader: - "cn=Heartbeat User,dc=example,dc=com" kibana_user: - "cn=Heartbeat User,dc=example,dc=com"
For more information, see Using Role Mapping Files.
-