65922e6ace
* Add documentation for User and Roles * Add Security Plugin and Configuration Files sections Move the documentation to the corresponding files * Update CHANGELOG * Apply suggestions from code review Signed-off-by: Álex Ruiz Becerra <alex-r-b@hotmail.com> * Improve security plugin and access control documentation * Update docs/ref/security/access-control.md Signed-off-by: Kevin Ledesma <kevin.ledesma@wazuh.com> * Fix typo on docs/ref/security/access-control.md Signed-off-by: Kevin Ledesma <kevin.ledesma@wazuh.com> * Review the development documentation for RBAC * Review reference documentation --------- Signed-off-by: Álex Ruiz Becerra <alex-r-b@hotmail.com> Signed-off-by: Kevin Ledesma <kevin.ledesma@wazuh.com> Co-authored-by: Álex Ruiz Becerra <alejandro.ruiz.becerra@wazuh.com>
1.3 KiB
Configuration Files
Security - Access Control
Wazuh Indexer uses the OpenSearch Security plugin to manage access control and security features.
The configuration files for the security plugin are located under the /etc/wazuh-indexer/opensearch-security/ directory by default.
Modifying these files directly is not recommened. Instead, use the Wazuh Dashboard Security plugin to create new security resouces. See Define Users and Roles.
Among these files, Wazuh Indexer uses these particularly to add its own security resources:
-
internal_users.yml: Defines the internal users for the Wazuh Indexer. Each user has a hashed password, reserved status, backend roles, and a description. -
roles.yml: Defines the roles and their permissions within the Wazuh Indexer. Each role specifies the cluster permissions, index permissions, and tenant permissions. -
roles_mapping.yml: Maps users and backend roles to the defined roles. This file specifies which users or backend roles have access to each role.
The Access Control section contains information about the security resources added to the Wazuh Indexer by default.