Help with roles and permissions

Security
1

Hello Everyone.

I’m try to accomplish the following but i am not being able to fully understand what i need to do.

  • Create a User Role so that the user will be able to:
  1. read only access to a list of indexes (i have indexA, indexB and indexC, i want the role to only access indexA and indexB)
  2. read only access to common dashboards
  3. Ability to create (and later edit or delete) any dashboards which won’t be visible to other users.
  4. no access/ability to change (or even view) cluster’s settings and sensite plugins like the security one

now i understand that 2 and 3 can be achieved by opensearch-dashboard multi-tenancy but in general i am really struggling to understand what permissions i should give to such role

2

@anubisg1

  1. read only access to a list of indexes (i have indexA, indexB and indexC, i want the role to only access indexA and indexB)

You can create separate permissions for each index in one role.

  1. read only access to common dashboards

You should consider multitenancy.

  1. Ability to create (and later edit or delete) any dashboards which won’t be visible to other users.

As the previous answer.

  1. no access/ability to change (or even view) cluster’s settings and sensite plugins like the security one

opensearch_dashboards_read_only limit sthe OpenSearch Dashboards UI only to Dashboards.

image
image708×188 12.7 KB