Users not able to load Messages on creating Alerts

heinzepreller · August 7, 2019, 9:59am

Hi there,
i have a Running graylog 3.0.2 instance with LDAP and Roles attached.
So i configured User Groups to belong to certain LDAP Roles and have the Rights to edit Streams & Dashboards of that Roles.

But if one of theses Users wants to add some Alarms to a Stream he gets immediately routed to that /notfound site with the ape on it.

In the logs i can see the following:

7.8.2019 11:44:502019-08-07 09:44:50,200 INFO : org.graylog2.shared.rest.resources.RestResource - Not authorized. User <Manfred> is missing permission <searches:relative>

Where can i add this rights (searches:relative) to that Role?
This is not possible with Graylog backend or am i missing something.

macko003 · August 11, 2019, 10:28am

you can set a lot of specific rights via graylog API check it.

jan · August 20, 2019, 12:14pm

you need to create a role that has this right.

That is done using the API: http://docs.graylog.org/en/3.1/pages/configuration/rest_api.html

One example is in the FAQ: http://docs.graylog.org/en/3.1/pages/faq.html#how-can-i-create-a-restricted-user-to-check-internal-graylog-metrics-in-my-monitoring-system

system · September 3, 2019, 12:14pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Allowing users to edit streams/alerts without giving them access to all messages Graylog Central (peer support)	5	1643	February 14, 2019
Graylog 3.1.0 Events permission Graylog Central (peer support)	3	838	September 25, 2019
Restricting alert access Graylog Central (peer support) pipeline-rules , dump-messagespl , sidecar	21	2030	December 31, 2019
Create alerts in Graylog Graylog Central (peer support)	3	548	November 11, 2020
Setting Granular Permissions Graylog Central (peer support)	1	885	February 28, 2017

Users not able to load Messages on creating Alerts

Related topics