Security for Nagios user

[surachai.ch]

Hi,

I have a question on assign authorization for a new user in Nagios XI. If I want to create a new user and allowed that user to manage only on hosts that they are going to monitor (admin for host), what level and box should I check on Security setting when create user.

BR,
Surachai C.

[lmiltchev]

You can create a user that will be able to configure hosts and services he/she is assigned to, see/control the monitoring engine, and access advanced features:

Go to Admin->Manage Users->Add New User...
Select "User" from the "Authorization Level" drop-down menu, select all of the check-mark boxes but these two: "Can see all hosts and services" and "Has read-only access". Click on "Update User"

Add this user as a monitoring contact to a host.

The user will be able to configure/reconfigure the host he/she is assigned to.

Note: This user still WON'T have access to the Core Config Manager. Only admins have access but they can see ALL hosts/services.

Please, read the following two documents for more info:

http://assets.nagios.com/downloads/nagi ... Rights.pdf

http://assets.nagios.com/downloads/nagi ... enancy.pdf

Hope this helps.

[tecnalb]

Hello,

On this topic, I have this configuration setup. My user is still able to see the Configuration tab, run wizards, and can even access my Auto Discovery Wizard and see any device auto discovered. Is there a way to prevent the users from adding new host or seeing these tools?

Maybe I'm misunderstanding...

-tj

[lmiltchev]

Go to: Admin-> Manage User->click on the "Edit" button next to this user, and post a screenshot of the "Security Setting" section.

[tecnalb]

attached. I guess what I want ths user to be able to do is edit his existing service thresholds like Load, Disk Usage, etc, but not be able to add new hosts. Maybe beyond the scope of rights.

[scottwilkerson]

There isn't a way to prevent them from adding hosts if they have he ability to reconfigure hosts/services