Skip to content

Doc: Spaces for Fleet #2284

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
karenzone merged 8 commits into from
Jul 28, 2025
Merged

Doc: Spaces for Fleet #2284

Show file tree
Hide file tree
Changes from 3 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
5ce390a
Doc: Spaces for Fleet
karenzone Jul 21, 2025
12fd2d0
Merge branch 'main' into 1830-spaces-fleet
karenzone Jul 25, 2025
8b52c7d
Refine content
karenzone Jul 25, 2025
a6af2dd
Feedback from code review
karenzone Jul 25, 2025
e41e14b
Add links
karenzone Jul 25, 2025
b9356cd
Tag feature for GA
karenzone Jul 28, 2025
4431421
Update deploy-manage/manage-spaces-fleet.md
karenzone Jul 28, 2025
cf8ba09
Merge branch 'main' into 1830-spaces-fleet
karenzone Jul 28, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Binary file added deploy-manage/images/kibana-space-add-asset.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added deploy-manage/images/kibana-space-fleet-policy.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added deploy-manage/images/kibana-space-integration.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added deploy-manage/images/kibana-space-multispace.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added deploy-manage/images/kibana-space-policy-settings.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
92 changes: 92 additions & 0 deletions deploy-manage/manage-spaces-fleet.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,92 @@
---
products:
- id: kibana
- id: elastic-agent
applies_to:
stack: preview 9.1
Copy link
Contributor Author

@karenzone karenzone Jul 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@kpollich is this feature GA at 9.1?

Copy link
Member

@kpollich kpollich Jul 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes this will be GA in 9.1, though it requires an opt-in and is not enabled by default.

serverless: ga
---

# Using Spaces with {{fleet}} [spaces-fleet]

Fleet supports a **space-aware** data model. You can use [Kibana spaces](/deploy-manage/manage-spaces.md) to manage Agent policies and integrations per space. Combined with granular user roles, this feature enables true role-based access control for {{agent}} management.

For **new deployments** on 9.1.0 or later, space awareness is enabled by default.
For **upgraded deployments** from earlier versions, you must explicitly [enable space awareness](#spaces-fleet-enable).

To use space awareness with {{fleet}}:

- [Enable the space awareness feature](#spaces-fleet-enable)
- [Assign and manage Agent policies across spaces](#spaces-manage-policies)
- [Make integration assets available across spaces](#spaces-manage-assets)

## Enable space awareness in Fleet [spaces-fleet-enable]

You must enable space awareness for deployments upgraded to 9.1.0 or later. Space awareness requires a one-time migration that copies your existing {{fleet}} data into a new, space-aware model. Previous data is preserved in snapshots in case you need to roll back.

To enable space awareness in upgraded deployments:

1. Navigate to the **Fleet** app.
2. Click the **Settings** tab.
3. Scroll to **Advanced settings**.
4. Under **Migrate to space-aware agent policies**, click **Start migration**.
5. Confirm the migration.


## Manage Agent policies across spaces [spaces-manage-policies]

To control where an Agent Policy is available:

1. Navigate to the Agent Policy’s **Settings** tab.

:::{image} /deploy-manage/images/kibana-space-fleet-policy.png
:alt: Agent Policy settings tab
:screenshot:
:::

2. Use the **Spaces** dropdown to select one or more spaces.

:::{image} /deploy-manage/images/kibana-space-policy-settings.png
:alt: Agent Policy spaces dropdown
:screenshot:
:::

Agent policies can be assigned to multiple spaces. In this example, the policy is visible in both the "Default" space and "My second space."

:::{image} /deploy-manage/images/kibana-space-multispace.png
:alt: Policy in multiple spaces
:screenshot:
:::


Access to a policy is still governed by each user's {{fleet}} permissions within selected spaces.

## Manage integration assets across spaces [spaces-manage-assets]

When you add an integration to an Agent policy, assets such as dashboards and visualizations are installed **only in the current space** by default.

If the Agent Policy spans multiple spaces, install the integration's assets in each space manually:

1. Switch to the desired Kibana space.
2. Go to the **Integrations** app > **Installed integrations** tab.
3. Click the name of the integration.

:::{image} /deploy-manage/images/kibana-space-integration.png
:alt: Installed integrations list
:screenshot:
:::

4. Open the **Assets** tab.

:::{image} /deploy-manage/images/kibana-space-add-asset.png
:alt: Kibana Assets tab
:screenshot:
:::

5. Click **Install Kibana assets in current space**.

This installs dashboards and other UI assets into the selected space.

:::{note}
Due to limitations in Kibana’s saved object model, integration assets are copied per space. These saved objects are considered **managed** and are **readonly**.
:::
10 changes: 6 additions & 4 deletions deploy-manage/manage-spaces.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -114,9 +114,6 @@ When a role is assigned to *All Spaces*, you can’t remove its access from the



## Delete a space [_delete_a_space]

Deleting a space permanently removes the space and all of its contents. Find the space on the **Spaces** overview page and click the trash icon in the Actions column. You can’t delete the default space, but you can customize it to your liking.


## Move saved objects between spaces [spaces-moving-objects]
Expand All @@ -137,4 +134,9 @@ To configure the landing page, use the default route setting in [Stack Managemen
:::{image} /deploy-manage/images/kibana-spaces-configure-landing-page.png
:alt: Configure space-level landing page
:screenshot:
:::
:::


## Delete a space [_delete_a_space]

Deleting a space permanently removes the space and all of its contents. Find the space on the **Spaces** overview page and click the trash icon in the Actions column. You can’t delete the default space, but you can customize it to your liking.
2 changes: 2 additions & 0 deletions deploy-manage/toc.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -617,6 +617,8 @@ toc:
- file: users-roles/cluster-or-deployment-auth/controlling-access-at-document-field-level.md
- file: users-roles/cluster-or-deployment-auth/submitting-requests-on-behalf-of-other-users.md
- file: manage-spaces.md
children:
- file: manage-spaces-fleet.md
- file: api-keys.md
children:
- file: api-keys/elasticsearch-api-keys.md
Expand Down
Loading