Hi Mike, Thanks for the update. 7177 looks great from my side now that the users who match a group are no longer "disabled" -

Another problem I had was that my admin users were authenticating based on the group but the level 1 weren't, so they were being forced to level 0 but still allowed to login, so I created the Observium Admin/User groups in my AD and use those now and it seems to be doing a lot better. When they were level 0, I couldn't edit them to give them devices/groups/ports/etc.

Thanks again.

On Tue, Nov 10, 2015 at 3:14 AM, Mike Stupalov mike@observium.org wrote:

Hi,

LDAP users not editable for now from WUI.

Corresponding UI elements have been fixed in r7177.

On Mon, Nov 9, 2015 at 9:04 PM, Cody Cook observium@codycook.us wrote:

...

Now that I'm LDAP authenticating to my domain, am I completely restricted to using auth_ldap_groups to set permissions? In the UI, I can go to User > Edit Users, drop down the list to see my domain users, but when I try to apply changes to these users (setting Global Read, or Normal user), I am redirected to the Observium User Management screen with no visible changes to any user account. There's no notification to tell me what went wrong or that editing LDAP user permissions is not possible. After switching to LDAP, Observium no longer provides authentication errors, and I'm getting something to the same effect when trying to edit users. Clicking on a user in my level 10 shows me that this user is an administrator, but users in my level 1 are showing disabled. The drop down list shows the same level 10 users as disabled as well. /debug doesn't help since it reloads the page. profile_sql doesn't seem to show me every SQL query being made.

Observium 0.15.11.7173 (rolling) _______________________________________________ observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

-- Mike Stupalov http://observium.org/

---

observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

Hi Mike, When you said "LDAP Users not editable for now from WUI" -- can you clarify this? I seem to be able to add devices to LDAP users and they stay for some time but I find that after some time, the devices no longer show up as assigned to users anymore. Would this be the case? Are they somehow removed on update?

Some days back, I added these groups to this user.

​ Today, I just checked and this is what it looked like. ​ ​ Thanks

On Tue, Nov 10, 2015 at 10:00 PM, Mike Stupalov mike@observium.org wrote:

Hi,

in r7178 fixed another problem: now users with userlevel "0" can not logon anymore (as it should be).

On Tue, Nov 10, 2015 at 8:51 PM, Cody Cook observium@codycook.us wrote:

...

Hi Mike, Thanks for the update. 7177 looks great from my side now that the users who match a group are no longer "disabled" -

Another problem I had was that my admin users were authenticating based on the group but the level 1 weren't, so they were being forced to level 0 but still allowed to login, so I created the Observium Admin/User groups in my AD and use those now and it seems to be doing a lot better. When they were level 0, I couldn't edit them to give them devices/groups/ports/etc.

Thanks again.

On Tue, Nov 10, 2015 at 3:14 AM, Mike Stupalov mike@observium.org wrote:

...

Hi,

LDAP users not editable for now from WUI.

Corresponding UI elements have been fixed in r7177.

On Mon, Nov 9, 2015 at 9:04 PM, Cody Cook observium@codycook.us

wrote:

...

...

Now that I'm LDAP authenticating to my domain, am I completely restricted to using auth_ldap_groups to set permissions? In the UI, I can go to User > Edit Users, drop down the list to see my domain users, but when I try to apply changes to these users (setting Global Read, or Normal user), I am redirected to the Observium User Management screen with no visible changes to any user account. There's no notification to tell me what went wrong or that editing LDAP user permissions is not possible. After switching to LDAP, Observium no longer provides authentication errors, and I'm getting something to the same effect when trying to edit users. Clicking on a user in my level 10 shows me that this user is an administrator, but users in my level 1 are showing disabled. The drop down list shows the same level 10 users as disabled as well. /debug doesn't help since it reloads the page. profile_sql doesn't seem to show me every SQL query being made.

Observium 0.15.11.7173 (rolling) _______________________________________________ observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

-- Mike Stupalov http://observium.org/

---

observium mailing list observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

-- Mike Stupalov http://observium.org/

Hi Saidur , I am also monitoring 300 devices. It working fine. But sometime gaps or dropouts in graphs occurs.

Are you facing this problem?

……… With Best Regards, Chaman Rathee Mob. No:- +91-9560055816

From: observium [mailto:observium-bounces@observium.org] On Behalf Of Saidur Morsalin || Fiber@Home Ltd. Sent: 15 November 2015 09:25 To: 'Observium Network Observation System'; 'Mike Stupalov' Subject: Re: [Observium] Does per-user permission exist in LDAP?

My Observium work very slow. 350 devices are added in this observium.

Best Regards,

Saidur Morsalin Network Operation Center(NOC) Email: saidur.salin@fiberathome.netmailto:saidur.salin@fiberathome.net [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: logo] House # 8/B, Road # 1 Gulshan-1, Dhaka-1212 Fiber@Home Ltd. Call: 01847102226, IP: 09666776677 Ext. 2306

From: observium [mailto:observium-bounces@observium.org] On Behalf Of Cody Cook Sent: Sunday, November 15, 2015 6:08 AM To: Mike Stupalov Cc: Observium Network Observation System Subject: Re: [Observium] Does per-user permission exist in LDAP?

Hi Mike, When you said "LDAP Users not editable for now from WUI" -- can you clarify this? I seem to be able to add devices to LDAP users and they stay for some time but I find that after some time, the devices no longer show up as assigned to users anymore. Would this be the case? Are they somehow removed on update?

Some days back, I added these groups to this user. [cid:image002.png@01D11F8C.58CDCD60] ​ Today, I just checked and this is what it looked like. ​[cid:image003.png@01D11F8C.58CDCD60] ​ Thanks

On Tue, Nov 10, 2015 at 10:00 PM, Mike Stupalov <mike@observium.orgmailto:mike@observium.org> wrote: Hi, in r7178 fixed another problem: now users with userlevel "0" can not logon anymore (as it should be).

On Tue, Nov 10, 2015 at 8:51 PM, Cody Cook <observium@codycook.usmailto:observium@codycook.us> wrote: Hi Mike, Thanks for the update. 7177 looks great from my side now that the users who match a group are no longer "disabled" -

Another problem I had was that my admin users were authenticating based on the group but the level 1 weren't, so they were being forced to level 0 but still allowed to login, so I created the Observium Admin/User groups in my AD and use those now and it seems to be doing a lot better. When they were level 0, I couldn't edit them to give them devices/groups/ports/etc.

Thanks again.

On Tue, Nov 10, 2015 at 3:14 AM, Mike Stupalov <mike@observium.orgmailto:mike@observium.org> wrote:

Hi,

LDAP users not editable for now from WUI.

Corresponding UI elements have been fixed in r7177.

On Mon, Nov 9, 2015 at 9:04 PM, Cody Cook <observium@codycook.usmailto:observium@codycook.us> wrote:

...

Now that I'm LDAP authenticating to my domain, am I completely restricted to using auth_ldap_groups to set permissions? In the UI, I can go to User > Edit Users, drop down the list to see my domain users, but when I try to apply changes to these users (setting Global Read, or Normal user), I am redirected to the Observium User Management screen with no visible changes to any user account. There's no notification to tell me what went wrong or that editing LDAP user permissions is not possible. After switching to LDAP, Observium no longer provides authentication errors, and I'm getting something to the same effect when trying to edit users. Clicking on a user in my level 10 shows me that this user is an administrator, but users in my level 1 are showing disabled. The drop down list shows the same level 10 users as disabled as well. /debug doesn't help since it reloads the page. profile_sql doesn't seem to show me every SQL query being made.

Observium 0.15.11.7173 (rolling) _______________________________________________ observium mailing list observium@observium.orgmailto:observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

-- Mike Stupalov http://observium.org/

---

observium mailing list observium@observium.orgmailto:observium@observium.org http://postman.memetic.org/cgi-bin/mailman/listinfo/observium

-- Mike Stupalov http://observium.org/

[Fabrikam]

Privileged or confidential information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), please delete this message and kindly notify the sender by an emailed reply. Opinions, conclusions and other information in this message that do not relate to the official business of Progression and its associate entities shall be understood as neither given nor endorsed by them.