Search Guard - Rock solid Elasticsearch security on all levels
Search Guard is an Elasticsearch plugin that offers encryption, authentication, and authorization. It builds on Search Guard SSL and provides pluggable authentication and authorization modules in addition. Search Guard is fully compatible with Kibana, Logstash and Beats.
Search Guard offers TLS on transport, HTTP Basic Authentication, JSON web token, Document- and Field-level security, Audit logging, REST management API, Fine-grained role- and index-based access control and lot more.