Hello,
I did some tests with the new Centreon Monitoring Agent with a Windows Server host and I was wondering if there was a possibility to restrict some check or command on the host directly ?
I tested with the connexion agent to poller and I was able to restart the server (so I think that shutdown is possible also) using the centreon plugin with the mode cmd-return just by putting shutdown /r in the --command option.
That means that anyone with an access to Centreon can reboot or shutdown a server if the CMA is configured on the host.
Thanks for the help !
Page 1 / 1
Hello,
I think you can do this by whitelisting the specific commands you need from cmd-return
Especially in the cma-whitelist block
By whitelisting only the commands you needs for monitoring purpose, you exclude every other commands
Hope it helps
I don’t understand how this whitelist is working
On the poller, in your custom whitelist file (e.g., /etc/centreon-engine-whitelist/my-whitelist.yml), include the following lines in the cma-whitelist block:
But I want to limit commands on the server who host the agent, not the Poller.
Because I’m admin of the host, not the Centreon.
Hi, as discussed together, we could implement a local whitelist, on Host, which would be merged with cma-whitelist (inherited from poller) in 2 modes :
- append : the whitelist used by CMA is a merge of poller-definied and local whitelist
- replace : only local whitelist is used
This idea is currently being discussed on our side.
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.