Demo users and roles
Search Guard ships with a demo configuration that contains users and roles for a variety of use cases. You can use these users and roles as a blueprint for your own permission schema.
Search Guard ships with the following demo users:
|admin||admin||Full access to the cluster and all indices, but no access to the Search Guard configuration. Use an admin certificate for that.|
|kibanaserver||kibanaserver||Internal Kibana server user, for configuring
|kibanaro||kibanaro||Regular Kibana user, has
|logstash||logstash||Logstash and Beats user, has
|readall||readall||Has read access to all indices|
|snapshotrestore||snapshotrestore||Has permissions to perform snapshot and restore operations|
Note: By default, all users are mapped to the
SGS_OWN_INDEX role. You can remove this mapping by deleting the following lines from
SGS_OWN_INDEX: reserved: false hidden: false users: - "*" description: "Allow full access to an index named like the username"