Elasticsearch Enrollment Token injection via Kibana's CLI

[nathanrstacey]

Describe the feature:
When starting Kibana for the first time, provide an option like the following to inject the Elasticsearch Enrollment Token into Kibana
-a parameter option added to the "./bin/kibana" command
-an option like 'click on http://localhost:5601:code=4532 to add the Elasticsearch Enrollment Token OR click enter and add the token here'

Describe a specific use case for the feature:
The current default method to inject the Elasticsearch token into Kibana requires a browser on the Kibana server. This is because the default URL is a localhost URL

Most users that I know do not have this option. Their linux servers are CLI only. To get to this webpage they need to change the kibana.yml config file with the server's URL. Then they will be able to access that webpage.

I love the simplicity of the current method, we just need an easy way for users without a 'localhost' web browser to use it

[elasticmachine]

Pinging @elastic/kibana-security (Team:Security)

[legrego]

@nathanrstacey, we offer a "detached enrollment mode" which allows you to use a CLI to complete the enrollment process (see Step 5 in the setup docs). It doesn't use the existing bin/kibana command like you're suggesting, but would this be a viable solution for you?

bin/kibana-setup --enrollment-token <enrollment-token>

[legrego]

Hey @nathanrstacey, just wanted to follow up on this. Do you find the bin/kibana-setup CLI sufficient for your needs?

Any objections to me closing this issue in favor of #120993, which aims to improve the docs and discoverability of the existing bin/kibana-setup CLI?

[legrego]

I'm going to close this in favor of improving the docs/discoverability of bin/kibana-setup via #120993. Thanks for the feedback!