Uploaded image for project: 'ZABBIX FEATURE REQUESTS'
  1. ZABBIX FEATURE REQUESTS
  2. ZBXNEXT-6145

Discovery rules page shows all discovery rules , even those not relevant to user group permissions

XMLWordPrintable

    • Icon: Change Request Change Request
    • Resolution: Unresolved
    • Icon: Trivial Trivial
    • None
    • None
    • None
    • None
    • Zabbix 5.0.1

      I wanted to tenant off Zabbix for multiple private environments. And with that comes security and visibility of neighboring information concerns.

      Steps to reproduce:

      1. Create host groups intended for private tenancy and segregated permission sets of hosts, lets call this tenant A.
      2. create discovery rules for private tenant A and tenant B networks related to two different environments (which you want to keep private from each other)
      3. Elevate one user from private tenant A to Zabbix Admin, with the hosts permissions set to ALL = none , TENTANTA = READ
      4. Goto Configuration --> Discovery
        1. Tenant 1 Zabbix Admin can see the discovery rule for private tenant B and name etc.

      Result:
      Discovery rules are visible to ALL "Zabbix administrators", and not tied does by permissions of host group hierarchy
      Ideal outcome:
      Restrictions on discovery rules to be visible/relational to host groups in order to show/hide based on permissions sets.

            Unassigned Unassigned
            vtcv Chris Voulgaropoulos
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: