Hi All,
We have a situation with searchguard kibana where in we need to use few users like logstash/kibanaserver for internal curator,dashboard import features but should not be able to log in to Kibana UI. So the user entry will need to be present in sg_internal_users.yml,sg_roles_mapping yml files etc but should not be able to log in to the Kibana UI.
Is there any way we can achieve this or is there any specific role that we can provide to achieve this? If this is not possible, could you please confirm that this is not possible?
Thanks & Regards,
Shwetha Mittur
Versions:
Elasticsearch: 5.5.1
Searchguard: 5.5.1-16
Kibana: 5.5.1
Searchguard Kibana: 5.5.1-4
No, that’s not possible. The service users are regular users with certain permissions, but they do not differ from other users. Even if we would remove them from the Kibana login dialogue, you could still bypass it by providing Basic Authentication headers directly.
···
On Tuesday, December 12, 2017 at 11:13:37 AM UTC+1, Shwetha M wrote:
Hi All,
We have a situation with searchguard kibana where in we need to use few users like logstash/kibanaserver for internal curator,dashboard import features but should not be able to log in to Kibana UI. So the user entry will need to be present in sg_internal_users.yml,sg_roles_mapping yml files etc but should not be able to log in to the Kibana UI.
Is there any way we can achieve this or is there any specific role that we can provide to achieve this? If this is not possible, could you please confirm that this is not possible?
Thanks & Regards,
Shwetha Mittur
Versions:
Elasticsearch: 5.5.1
Searchguard: 5.5.1-16
Kibana: 5.5.1
Searchguard Kibana: 5.5.1-4