Elasticsearch security features provides that grant a subset of the privileges needed by APM users. When possible, assign users the built-in roles to minimize the affect of future changes on your security strategy. If no built-in role is available, you can assign users the privileges needed to accomplish a specific task. In general, there are three types of privileges you’ll work with:

• Elasticsearch index privileges: Control access to the data in specific indices your cluster.

• Get Started with Elasticsearch: Video