Nagios Support Forum

HI

how to configure an user non admin that can add news hosts and services but that only can modify a especific hostgroup and can't see the others hostgroup, it is this possible??


thanks
CW

Try creating a new XI user and checking the "can reconfigure hosts and services" checkbox. Set their permissions to "user," and this might get you what you need, or at least as close as we can get to it.

It seems there could be some issue here.
I tried that, I can monitor the host I need, but that user I created can ALSO MODIFY other hostgroups, although it is not member of those service, host, etc.


To me this represents a security issue, that needs to be addressed.
Try making the test in your environment. Create a new user, with Authorization Level set to USER, check Can (re)configure hosts and services and check Can access advanced features. Now enter your Nagios Core Config Manager and there you will see, edit, modify, delete other hosts, services, etc.

Is there a way to set the access to Nagios Core Config Manager only for this User.

The Core Config Manager doesn't currently support granular user authorizations for hosts and services, so if you give a user access the Core Config Manager, they can access all hosts and services. You can create additional accounts for the Core Config Manager, but they will have full access to all configs. The way to do this in a secure way is to create a user and check "can reconfigure hosts and services" and set their permissions to "user." If that user accesses the host details, there will be a tab for "Configure" that grants them access to only the items they've been set as contacts for.