-
Notifications
You must be signed in to change notification settings - Fork 8.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disabling multiple logins #27247
Comments
Pinging @elastic/kibana-security |
It would be great that all open kibana sessions get a message when a new session is started under the same userid. Another wish is to make this configurable with on/off. |
@bpcvdhelm are you all using the native realm to auth in ES/Kibana? |
@kobelb: We are using the ldap realm to authenticate users. |
Any updates on this thread? |
@gulnadaf no update at the moment, is it safe to assume that this is something that you too would like to take advantage of and you're using the native realm as well? |
Closing in favor of #18162 |
Some users would like a way to disable multiple logins to Kibana as a security feature, and alert users when a login attempt occurs on another computer.
This feels like a feature that an IdM/IdP would implement, and not something that we should be adding to Kibana. We've generally pushed back on similar features being added to ES, so we might want to take a similar stance here.
I'm opening this issue to discuss further, and gauge interest in a feature like this. There are likely users taking advantage of the current behavior, so this isn't something that we'd likely want to opt-into by default.
The text was updated successfully, but these errors were encountered: