Granular, role-based access controls place the responsibility in your hands to control the actions a staff member or external contributor can perform against your Elasticsearch clusters.
Index level permissions are used to allow or disallow actions that would affect indices matching the configured index patterns, such as setting read or write permissions to various Stacks under your administration.
Document level permissions when set restrict users from being able to view documents that they are unauthorised to view, edit or share. There are many use cases where this would be required, especially in compliance with HIPPA and various other regulations directly affected by data hygiene.
Field level permissions restrict users from being able to access and modify specific fields within a document or dashboard. This means that dashboards can not be edited in a way that isn’t permitted by your administrator.
Our managed service supporting Open Distro for Elasticsearch fully enables users to set Role Based Access Controls (also known as RBAC) to restrict internal users and unauthorised staff accessing data, reports and dashboards that they haven’t been permitted to view. This includes pre-defined roles for Kibana Read Only and Dashboard Read Only, in addition to custom roles that you can manage yourself.