Siren Federate User Guide

Set up security

Connector

When using Shield or Search Guard, Federate will need to authenticate as a user with all the permissions on the indices storing datasources and virtual index configuration. The credentials of this user can be specified through the following node configuration settings:

siren.connector.username: the username of the Federate connector user.
siren.connector.password: the password of the Federate connector user.

Searchguard

The following snippet can be added to sg_roles.yml to define a federateserver role with all the required permissions on connector indices.

federateserver:
  indices:
    ?siren-federate-datasources:
      '*':
        - ALL

The following snippet can be added to sg_roles.yml to define a federateuser role with all the required permissions to manage datasources:

federateuser:
  cluster:
    - "cluster:admin/siren/connector/datasource/*"

In this section: