Elasticsearch Security
editElasticsearch Security
editIf Elasticsearch’s security is enabled you will need to ensure you configure a user or API key with enough privileges
Bootstrap
editIn order for the datashippers to have enough privileges to bootstrap the target datastreams with all the ECS mappings, templates and settings the authenticated security principal needs the following minimum privileges:
Type | Privileges |
---|---|
Cluster |
|
Index |
|
No bootstrap
editIf the datashippers are configured to skip bootstrapping the target destinations all together, the security principal requires the following minimum privileges to push data.
Type | Privileges |
---|---|
Cluster |
|
Index |
|