Grant privileges and roles needed to read Filebeat data from {{kib}} [kibana-user-privileges]

{{kib}} users typically need to view dashboards and visualizations that contain Filebeat data. These users might also need to create and edit dashboards and visualizations.

To grant users the required privileges:

Create a reader role, called something like filebeat_reader, that has the following privilege:

Type	Privilege	Purpose
Index	`read` on `filebeat-*` indices	Read data indexed by Filebeat
Spaces	`Read` or `All` on Dashboards, Visualize, and Discover	Allow the user to view, edit, and create dashboards, as well as browse data.
Spaces	`Read` or `All` on {{kib}} Logs	Allow the use of {{kib}} Logs

Assign the reader role, along with the following built-in roles, to users who need to read Filebeat data:

Role Purpose
monitoring_user Allow users to monitor the health of Filebeat itself. Only assign this role to users who manage Filebeat.