Document level security
editDocument level security
editDocument level security (DLS) enables you to restrict access to documents in your Elasticsearch indices according to user and group permissions. This ensures search results only return authorized information for users, based on their permissions.
Availability & prerequisites
editSupport for DLS in Elastic connectors was introduced in version 8.9.0.
This feature is in beta and is subject to change. The design and code is less mature than official GA features and is being provided as-is with no warranties. Beta features are not subject to the support SLA of official GA features.
This feature is not available for all Elastic subscription levels. Refer to the subscriptions pages for Elastic Cloud and Elastic Stack.
DLS is available by default when using the following Elastic connectors:
- Confluence
- Dropbox
- Jira (including Jira Data Center)
- GitHub
- Gmail
- Google Drive
- Network Drive
- OneDrive
- Outlook
- Salesforce
- SharePoint Online
- SharePoint Server
- ServiceNow
Note that our standalone products (App Search and Workplace Search) do not use this feature. Workplace Search has its own permissions management system.
Learn more
editDLS documentation: