Xymon Mailing List Archive search

Administration Rights

4 messages in this thread

list Jeffrey Parker · Tue, 24 Jul 2007 13:05:12 -0500 · 
Hello again,

      Is there a way to separate enabling/disabling alerts from
acknowledging as far as who has the rights to do these things, i.e.,
authentication when clicking on the option from the drop down
Administration menu.   Can I have a separate user list for each of
these functions?

Thanks

Jeff

-- 
Jeff Parker
user-5dc6bc066d72@xymon.invalid
list Tod Hansmann · Tue, 24 Jul 2007 13:10:48 -0600 · 
You can separate the scripts themselves into disparate directories and
then setup Apache to require different authentication for each
directory.

Tod Hansmann
Network Engineer
quoted from Jeffrey Parker
 
 
-----Original Message-----
From: Jeffrey Parker [mailto:user-5dc6bc066d72@xymon.invalid] 
Sent: Tuesday, July 24, 2007 12:05 PM
To: user-ae9b8668bcde@xymon.invalid
Subject: [hobbit] Administration Rights

Hello again,

      Is there a way to separate enabling/disabling alerts from
acknowledging as far as who has the rights to do these things, i.e.,
authentication when clicking on the option from the drop down
Administration menu.   Can I have a separate user list for each of
these functions?

Thanks

Jeff

-- 
Jeff Parker
user-5dc6bc066d72@xymon.invalid
list Henrik Størner · Tue, 24 Jul 2007 21:43:30 +0200 ·
quoted from Tod Hansmann
On Tue, Jul 24, 2007 at 01:10:48PM -0600, Tod Hansmann wrote:
You can separate the scripts themselves into disparate directories and
then setup Apache to require different authentication for each
directory.
In fact, Apache lets you configure individual access rights per file.
So it can be done through the webserver config.


Regards,
Henrik
list Trent Melcher · Tue, 24 Jul 2007 15:00:40 -0500 ·
quoted from Jeffrey Parker
On Tue, 2007-07-24 at 13:05 -0500, Jeffrey Parker wrote:
Hello again,

      Is there a way to separate enabling/disabling alerts from
acknowledging as far as who has the rights to do these things, i.e.,
authentication when clicking on the option from the drop down
Administration menu.   Can I have a separate user list for each of
these functions?
Yes there is at the file level.  Add lines similar to this to your
httpd.conf   Put them in your Directory definition for hobbit-seccgi

<Files "bb-ack.sh">
      Require group ackers
</Files>


<Files "hobbit-enadis.sh">
      Require group disablers
</Files>


Just rename your groups to whatever you want and add your user the each
group that you want to have access

Trent

Thanks

Jeff