Merge pull request #14 from opendistro/master

merge

Author: ashwinkumar12345

docs/alerting/settings.md

@@ -10,7 +10,7 @@ nav_order: 5
 
 ## Alerting indices
 
-The alerting feature creates several indices and one alias. Don't delete these or modify their contents without using the alerting APIs.
+The alerting feature creates several indices and one alias. The security plugin demo script configures them as [system indices](../../security/configuration/system-indices/) for an extra layer of protection. Don't delete these indices or modify their contents without using the alerting APIs.
 
 Index | Purpose
 :--- | :---

docs/knn/index.md

@@ -199,7 +199,7 @@ GET my-knn-index-2/_search
 All parameters are required.
 
 - `lang` is the script type. This value is usually `painless`, but here you must specify `knn`.
-- `source` is the name of the script, `knn_store`.
+- `source` is the name of the script, `knn_score`.
 
   This script is part of the KNN plugin and isn't available at the standard `_scripts` path. A GET request to  `_cluster/state/metadata` doesn't return it, either.
 

docs/security/access-control/users-roles.md

@@ -109,6 +109,8 @@ Role | Description
 `alerting_ack_alerts` | Grants permissions to view and acknowledge alerts, but not modify destinations or monitors.
 `alerting_full_access` | Grants full permissions to all alerting actions.
 `alerting_read_access` | Grants permissions to view alerts, destinations, and monitors, but not acknowledge alerts or modify destinations or monitors.
+`anomaly_full_access` | Grants full permissions to all anomaly detection actions.
+`anomaly_read_access` | Grants permissions to view detectors, but not create, modify, or delete detectors.
 `all_access` | Grants full access to the cluster: all cluster-wide operations, write to all indices, write to all tenants.
 `kibana_read_only` | A special role that prevents users from making changes to visualizations, dashboards, and other Kibana objects. See `opendistro_security.readonly_mode.roles` in `kibana.yml`. Pair with the `kibana_user` role.
 `kibana_user` | Grants permissions to use Kibana: cluster-wide searches, index monitoring, and write to various Kibana indices.

docs/security/configuration/system-indices.md

@@ -8,11 +8,9 @@ nav_order: 15
 
 # System indices
 
-By default, Open Distro for Elasticsearch has several protected system indices. Even if your user account has read permissions for all indices, you can't directly access the data in these system indices.
+By default, Open Distro for Elasticsearch has a protected system index, `.opendistro_security`, which you create using [securityadmin.sh](../security-admin/). Even if your user account has read permissions for all indices, you can't directly access the data in this system index.
 
-The first and most critical index is `.opendistro_security`, which stores the security configuration for your cluster. The demo configuration creates this index automatically, but when you configure the plugin manually, you create it when you first run [securityadmin.sh](../security-admin/).
-
-You can see other system indices in `elasticsearch.yml`:
+You can add additional system indices in in `elasticsearch.yml`. In addition to automatically creating `.opendistro_security`, the demo configuration adds several indices for the various Open Distro for Elasticsearch plugins that integrate with the security plugin:
 
 ```yml
 opendistro_security.system_indices.enabled: true