Using the Kibana Custom Role
By adding a user to a team that has the Kibana Custom Role selected, this gives you the flexibility to decide their permissions directly using Kibana Security roles.
Tip: You can manage Kibana Custom Roles directly from the Logit Teams Dashboard and only need to manage roles using Kibana Security Roles directly if you have a specific use case.
Managing Security Roles directly in Kibana
Launch Kibana and from the left menu choose Security > Roles and choose the required Role for example stack_user_ro. Choose the Mapped Users tab and Manage Mapping.
Paste the User Logit Id into the Users input box.
Choose Map to add the user to the Kibana Role. You can add multiple users at the same time using this method.
Viewing which Roles a User currently has assigned
In Kibana from the left menu choose Security > Roles. Choose from the Internal Users dropdown the required users Logit Id.
The Roles that the selected user(s) are mapped to are then displayed in the list.
Adding a new Kibana Role
If you need to create a new role to save time you can duplicate an existing role, for example the kibana_user role and choose Actions > Duplicate. This allows you to then edit the duplicated role and just modify index and tenant permissions where needed.
Tip: In most cases, any new roles will need to have read access to the following indexes to allow Kibana Discover view to work as expected .kibana .kibana-6
Removing a User from a specific Kibana Role
To remove a user's Logit Id from Kibana Security choose the required Role and select the Mapped Users tab. Select the user that you need to remove and choose Delete Mapping. The User no longer has permission to access the selected Role.