x-pack role

1) 내부 role 

monitoring_user

- indices : .mavel-es-*,  .monitoring-*

- privilegs : read

logstash_system

- indices : 

- privilegs : 

kibana_user

- indices : .kibana*

- privileges : manager, read, index, delete

reporting_user

- indices : .reporting-*

- privileges : read, write

remote_monitoring_agent

- indices : .mavel-es-*,  .monitoring-*

- privileges : all

kibana_system

- indices : .kibana*, .reporting-*

- privileges : all

transport_client 

- indices : 

- privileges : 

superuser 

- indices : * 

- privileges : all

ingest_admin

- indices : 

- privileges : 

2) 신규 role 생성/할당

curl -XPOST -u elastic 'localhost:9200/_xpack/security/role/events_admin' -d '{

  "indices" : [

    {

      "names" : [ "events*" ],

      "privileges" : [ "all" ]

    },

    {

      "names" : [ ".kibana*" ],

      "privileges" : [ "manage", "read", "index" ]

    }

  ]

}'

curl -XPOST -u elastic 'localhost:9200/_xpack/security/user/johndoe' -d '{

  "password" : "userpassword",

  "full_name" : "John Doe",

  "email" : "john.doe@anony.mous",

  "roles" : [ "events_admin" ]

}'

https://www.elastic.co/guide/en/x-pack/current/security-privileges.html