# In this file users, backendroles and hosts can be mapped to Search Guard roles. # Permissions for Search Guard roles are configured in sg_roles.yml sg_all_access: readonly: true users: - admin backendroles: - admin sg_logstash: backendroles: - logstash sg_kibana_server: readonly: true users: - kibanaserver sg_kibana_user: backendroles: - kibanauser sg_readall: readonly: true backendroles: - readall sg_manage_snapshots: readonly: true backendroles: - snapshotrestore sg_own_index: users: - '*' #Siren Role Mappings investigate_system: users: - sirenserver backendroles: - sirenserver investigate_admin: users: - sirenadmin backendroles: - sireadmin investigate_user: users: - sirenuser backendroles: - sirenuser