--- title: Elastic Cloud API Integration on Truto slug: elasticcloud category: Application Development canonical: "https://truto.one/integrations/detail/elasticcloud/" --- # Elastic Cloud API Integration on Truto **Category:** Application Development **Status:** Generally available ## Unified APIs ### Unified User Directory API - **Organizations** — Organizations are the top level entity in the source application. Users are associated with an organization. - **Roles** — The Role object represents a role of a User. - **Users** — The User object represents a User. ## How it works 1. **Link your customer's Elastic Cloud account.** Use Truto's frontend SDK; we handle every OAuth and API key flow so you don't need to create the OAuth app. 2. **Authentication is automatic.** Truto refreshes tokens, stores credentials securely, and injects them into every API request. 3. **Call Truto's API to reach Elastic Cloud.** The Proxy API is a 1-to-1 mapping of the Elastic Cloud API. 4. **Get a unified response format.** Every response uses a single shape, with cursor-based pagination and data in the `result` field. ## Use cases - **Automate Elastic Cloud user provisioning from your identity platform** — Identity governance and CIEM platforms can automatically invite users to a customer's Elastic Cloud Organization and assign scoped roles when team membership changes, eliminating manual access provisioning. - **Sync organizational roles and permissions for compliance reporting** — GRC and compliance SaaS products can pull Elastic Cloud Organization members, roles, and access levels to generate audit-ready reports on who has access to production search and observability infrastructure. - **Enforce least-privilege access across cloud developer tools** — DevOps platforms can read and manage Elastic Cloud roles and user assignments alongside other infrastructure tools, ensuring developers only have the minimum permissions needed across their entire stack. - **Automate offboarding across the application development stack** — HR and IT automation platforms can revoke Elastic Cloud Organization access in real time when an employee leaves, closing a critical security gap in data-intensive environments. ## What you can build - **Elastic Cloud user directory sync** — Continuously sync Elastic Cloud Organization members into your product so customers always see an up-to-date roster of who has access to their search and observability infrastructure. - **Cross-platform role mapping dashboard** — Display Elastic Cloud roles alongside roles from other integrated platforms, giving IT admins a single view of user entitlements across their toolchain. - **Automated role assignment on team changes** — When a user is added to a team in your product, automatically assign them the appropriate scoped Elastic Cloud role — such as view-only access to a specific serverless project. - **Real-time access revocation workflow** — Trigger immediate removal of a user from an Elastic Cloud Organization when your platform detects an offboarding event or policy violation. - **Organization-level access audit log** — Surface a timeline of all user additions, removals, and role changes across your customers' Elastic Cloud Organizations for compliance and security review. ## FAQs ### What Elastic Cloud entities can be managed through Truto's Unified User Directory API? The Unified User Directory API maps to Elastic Cloud Organizations, Users (Organization members), and Roles. This covers reading org structure, listing and managing members, and mapping role assignments. ### How does authentication work for the Elastic Cloud integration? Elastic Cloud's REST API uses API keys for authentication. Your end users generate an API key from their Elastic Cloud console, and Truto securely stores and manages the credential on your behalf. ### Are specific tools already available for Elastic Cloud, or are they built on request? Elastic Cloud tools are built on request. Once you identify the specific operations you need — such as listing organization members or assigning roles — Truto's team builds and ships the tools for your integration. ### Does Truto handle pagination and rate limits for the Elastic Cloud API? Yes. Truto abstracts away pagination and respects Elastic Cloud API rate limits automatically, so your application doesn't need to implement retry logic or cursor management. ### Can I use this integration alongside other user directory integrations through the same Unified API? Absolutely. The Unified User Directory API provides a consistent schema for Organizations, Users, and Roles across all supported platforms. You write one integration and get normalized data whether the source is Elastic Cloud or another provider. ### What level of role granularity is supported? Elastic Cloud supports both predefined roles (e.g., Organization owner, Billing admin) and custom RBAC roles scoped to specific deployments or serverless projects. The exact role operations available depend on the tools built for your use case.