Observability: other versions:
What is Elastic Observability?
What’s new in 8.14
Get started
- Logs and metrics
- Traces and APM
- Data from Splunk
Observability AI Assistant
Application performance monitoring (APM)
- Self manage APM Server
  - APM Server binary
  - Fleet-managed APM Server
- Data Model
  - Spans
  - Transactions
  - Errors
  - Metrics
  - Metadata
- Features
- Navigate the APM UI
- Perform common tasks in the APM UI
- OpenTelemetry integration
- Manage storage
- Configure
- Advanced setup
- Secure communication
  - With APM agents
  - With the Elastic Stack
    - Use feature roles
    - Grant access using API keys
- Monitor
- APM Server API
- APM UI API
- Troubleshoot
- Upgrade
- Release notes
- Known issues
Log monitoring
- Stream any log file
- Parse and organize logs
- Filter and aggregate logs
- Stream application logs
- Explore logs
- Logs index template reference
- Troubleshoot logs
Infrastructure monitoring
- View infrastructure metrics by resource type
- Explore infrastructure metrics over time
- Analyze and compare hosts
- Detect metric anomalies
- Configure settings
- Metrics reference
AWS monitoring
- Ingestion options
- Monitor AWS with Elastic Agent
- Monitor AWS with Beats
- Monitor AWS with Amazon Data Firehose
- Monitor AWS with Elastic Serverless Forwarder
Azure monitoring
- Monitor Microsoft Azure with Elastic Agent
- Monitor Microsoft Azure with Beats
- Monitor Microsoft Azure with the Azure Native ISV Service
- Monitor Microsoft Azure OpenAI
Synthetic monitoring
- Get started
  - Use Project monitors
  - Use the Synthetics app
- Scripting browser monitors
- Configure lightweight monitors
- Manage monitors
- Work with params and secrets
- Analyze monitor data
- Monitor resources on private networks
- Use the CLI
  - Filtering monitors
- Configure projects
- Configure Synthetics settings
- Grant users access to secured resources
- Manage data retention
- Use Synthetics with traffic filters
- Migrate from the Elastic Synthetics integration
- Scale and architect a deployment
- Synthetics support matrix
- Synthetics Encryption and Security
- Troubleshooting
Uptime monitoring
- Get started with Uptime
- Analyze
- Configure settings
- Troubleshoot mapping issues
Real user monitoring
Universal Profiling
- Get started
- Manage data storage
  - Index lifecycle management
  - Configure probabilistic profiling
- Advanced configuration
- Upgrade
- Troubleshoot
- Self-hosted infrastructure
Alerting
- Create and manage rules
- Aggregation options
  - Rate aggregation
- View alerts
  - SLO burn rate breaches
  - Threshold breaches
Service-level objectives (SLOs)
- Configure SLO access
- Create an SLO
Cases
- Configure access to cases
- Open and manage new cases
- Configure external connectors
CI/CD observability
Troubleshooting
- Explore data
- Inspect
Fields reference
- Logs app fields
- Infrastructure app fields
Tutorials
- Monitor Google Cloud Platform
  - GCP Dataflow templates
- Monitor a Java application
- Monitor nginx
- Monitor Kubernetes

IMPORTANT: No additional bug fixes or documentation updates will be released for this version. For the latest information, see the current release documentation.

› ›

Configure access to cases

edit

Configure access to cases

edit

To access and send cases to external systems, you need the appropriate license, and your role must have the Cases Kibana privilege as a user for the Observability feature.

Here are the minimum required privileges:

Action	Kibana Privileges
Give full access to manage cases and settings	`All` for the Cases feature under Observability. `All` for the Actions and Connectors feature under Management. Roles without `All` Actions and Connectors feature privileges cannot create, add, delete, or modify case connectors. By default, `All` for the Cases feature includes authority to delete cases, delete alerts and comments from cases, and edit case settings unless you customize the sub-feature privileges.
Give assignee access to cases	`All` for the Cases feature under Observability. Before a user can be assigned to a case, they must log into Kibana at least once, which creates a user profile.
Give view-only access for cases	`Read` for the Cases feature under Observability. By default, `Read` for the Cases feature does not include authority to delete cases or delete alerts and comments from cases. You also cannot view or edit case settings. You can enable these actions by customizing the sub-feature privileges.
Give access to add alerts to cases	`All` for the Cases feature under Observability. `Read` for an Observability feature that has alerts.
Revoke all access to cases	`None` for the Cases feature under Observability.

If you are using an on-premises Kibana deployment and want your email notifications and external incident management systems to contain links back to Kibana, configure the server.publicBaseUrl setting.

For more details, refer to feature access based on user privileges.

« Cases Open and manage new cases »

Was this helpful?

Feedback

The Search AI Company

ELK Stack

Elastic Cloud

Generative AI

Search

Security

Observability

By solution

Industries

Customer spotlight

Research

Build

Learn

Connect

Configure access to cases

Configure access to cases

Follow us

About us

Join us

Partners

Trust & Security

Investor relations

Excellence Awards

About us

Join us

Partners

Trust & Security

Investor relations

Excellence Awards