Using the Kibana Custom Role
By adding a user to a team that has the Kibana Custom Role selected, this gives you the flexibility to decide their permissions directly using Kibana Security roles.
To assign Kibana Security roles to a specific Logit user first copy the users Logit Id by going to Account Settings > Users. If you need to invite a new Logit user enter their email address at the top of the screen.
Then in Kibana from the left menu choose Security > Roles and choose the required Role for example stack_user_ro. Choose the Mapped Users tab and Manage Mapping.
Paste the User Logit Id into the Users input box.
Choose Map to add the user to the Kibana Role. You can add multiple users at the same time using this method.
Viewing which Roles a User currently has assigned
In Kibana from the left menu choose Security > Roles. Choose from the Internal Users dropdown the required users Logit Id.
The Roles that the selected user(s) are mapped to are then displayed in the list.
Adding a new Kibana Role
If you need to create a new role to save time you can duplicate an existing role, for example the kibana_user role and choose Actions > Duplicate. This allows you to then edit the duplicated role and just modify index and tenant permissions where needed.
Tip: In most cases any new roles will need to have read access to the following indexes to allow Kibana Discover view to work as expected .kibana .kibana-6
Removing a User from a specific Kibana Role
To remove a users Logit Id from Kibana Security choose the required Role and the select the Mapped Users tab. Select the user that you need to remove and choose Delete Mapping. The User no longer has permission to access the selected Role.