I’m using native authentication for my Elasticsearch cluster. I would like to create a user with the least privileges necessary for Graylog to function. What should these permissions be?
I wasn’t able to find any documentation detailing the Elasticsearch permissions required for Graylog. I see there was a previous posting about this entitled “Elasticsearch user permissions” but it was closed without a response.