Hello,
I did some tests with the new Centreon Monitoring Agent with a Windows Server host and I was wondering if there was a possibility to restrict some check or command on the host directly ?
I tested with the connexion agent to poller and I was able to restart the server (so I think that shutdown is possible also) using the centreon plugin with the mode cmd-return just by putting shutdown /r in the --command option.
That means that anyone with an access to Centreon can reboot or shutdown a server if the CMA is configured on the host.
Thanks for the help !
Page 1 / 1
Hello,
I think you can do this by whitelisting the specific commands you need from cmd-return
Especially in the cma-whitelist block
By whitelisting only the commands you needs for monitoring purpose, you exclude every other commands
Hope it helps
I don’t understand how this whitelist is working
On the poller, in your custom whitelist file (e.g., /etc/centreon-engine-whitelist/my-whitelist.yml), include the following lines in the cma-whitelist block:
But I want to limit commands on the server who host the agent, not the Poller.
Because I’m admin of the host, not the Centreon.
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.