Adds Kibana instructions

aetter · aetter · commit 050a787d332e · 2019-06-27T15:16:16.000-07:00
diff --git a/docs/security-access-control/multi-tenancy.md b/docs/security-access-control/multi-tenancy.md
@@ -66,10 +66,7 @@ Setting | Description
 
 ## Add tenants
 
-To create tenants, add them in Kibana or `tenants.yml`.
-
-- Read-write (`RW`) permissions let the role view and modify objects in the tenant.
-- Read-only (`RO`) permissions let the role view objects, but not modify them.
+To create tenants, use Kibana, the REST API, or `tenants.yml`.
 
 
 #### Kibana
@@ -80,6 +77,11 @@ To create tenants, add them in Kibana or `tenants.yml`.
 1. Choose **Submit**.
 
 
+#### REST API
+
+See [Create tenant](../api/#create-tenant).
+
+
 #### tenants.yml
 
 ```yml
@@ -94,9 +96,19 @@ admin_tenant:
   description: "Demo tenant for admin user"
 ```
 
-## Assign tenants to roles
+## Give roles access to tenants
+
+After creating a tenant, give a role access to it using Kibana, the REST API, or `roles.yml`.
 
-After creating a tenant, give a role access to it using the REST API or `roles.yml`.
+- Read-write (`kibana_all_write`) permissions let the role view and modify objects in the tenant.
+- Read-only (`kibana_all_read`) permissions let the role view objects, but not modify them.
+
+
+#### Kibana
+
+1. Open Kibana.
+1. Choose **Security**, **Roles**, and **Tenant Permissions**.
+1. Choose a tenant, and give the role read or write permissions to it.
 
 
 #### REST API
