diff --git a/elasticsearch/sgconfig/sg_config.yml b/elasticsearch/sgconfig/sg_config.yml
index c47b812efd..be0d66751e 100644
--- a/elasticsearch/sgconfig/sg_config.yml
+++ b/elasticsearch/sgconfig/sg_config.yml
@@ -20,6 +20,9 @@ searchguard:
                prometheus:
                  verb: get
                  resource: /metrics
+               jaeger:
+                 verb: manage
+                 resource: /jaeger
       authentication_domain_basic_internal:
         enabled: true
         order: 1
diff --git a/elasticsearch/sgconfig/sg_roles.yml b/elasticsearch/sgconfig/sg_roles.yml
index d3582026c1..cbb8022074 100644
--- a/elasticsearch/sgconfig/sg_roles.yml
+++ b/elasticsearch/sgconfig/sg_roles.yml
@@ -49,6 +49,36 @@ sg_role_admin:
   cluster:
     - CLUSTER_ALL
 
+sg_role_jaeger:
+  cluster:
+    - indices:data/write/bulk
+    - CLUSTER_MONITOR
+  indices:
+    '*jaeger-span-*':
+      '*':
+        - CRUD
+        - CREATE_INDEX
+        - READ
+        - MANAGE
+    '*jaeger-service-*':
+      '*':
+        - CRUD
+        - CREATE_INDEX
+        - READ
+        - MANAGE
+    '*jaeger-span-archive':
+      '*':
+        - CRUD
+        - CREATE_INDEX
+        - READ
+        - MANAGE
+    '*jaeger-span-archive-*':
+      '*':
+        - CRUD
+        - CREATE_INDEX
+        - READ
+        - MANAGE
+
 sg_project_operations:
   indices:
     '?operations?*':
diff --git a/elasticsearch/sgconfig/sg_roles_mapping.yml b/elasticsearch/sgconfig/sg_roles_mapping.yml
index 38b3f50815..d6b841ee6e 100644
--- a/elasticsearch/sgconfig/sg_roles_mapping.yml
+++ b/elasticsearch/sgconfig/sg_roles_mapping.yml
@@ -20,3 +20,7 @@ sg_role_admin:
 sg_role_prometheus:
   backendroles:
     - 'prometheus'
+
+sg_role_jaeger:
+  backendroles:
+    - 'jaeger'