Hi,
* Search Guard version: 6:6.3.1-22.3
* Elasticsearch version: 6.3.1
I have currently given default readall/readall access to all users of kibana as I don't want them to make any changes to the visualizations.
Unfortunately, this user does not have the required permission to generate reports.
I read
here that I need to "add "indices:data/read/scroll*" to cluster level permissions:"
sg_roles.yml:
# Read all, but no write permissions
sg_readall:
readonly: true
cluster:
- CLUSTER_COMPOSITE_OPS_RO
- "indices:data/read/scroll*"
indices:
'*':
'*':
- READ
- indices:data/read/scroll/clear
Wanted to understand what all the users will be able to do with above permissions?
As I understand from
this, this should not give 'write' access so users will not be able to tamper with the data. But just want to be sure about that.
-Thanks
Nikhil