I want to provide a user e.g. an analyst a set of permissions that will allow him to:
First two activities are easily covered by the permissions I found (using cluster_composite_ops_ro and indices:data/read/*), however I'm still unable to define exact permissions to allow saving the dashboard. Could you please advise?
I tested all indices:data/write/* permissions, kibana_all_write cluster permissions and write action permission to no avail.
I used dashboards role that out of the box comes with the following permissions:
cluster permissions: cluster_monitor
index pattern: *
permissions: index, read
index pattern: .kibana*
permissions: write
The role had to be assigned to global_tenant and that did the trick.