Wazuh Admin Roles/Rights

[Dinie Rosli]

Dear All,

I tried setting up a Wazuh admin user following this documentation https://documentation.wazuh.com/current/user-manual/wazuh-dashboard/rbac.html.

I keep getting save error forbidden, even when I perform the steps above in the admin account. The issue that I'm having is specifically on step 4:

1. To map the user to the admin role, follow these steps:

   1. Click the upper-left menu icon to open the options, select Security and then Roles to open the roles page.

   2. Search for the all_access role in the roles' list and select it to open the details window.

   3. Select the Mapped users tab and click Manage mapping.

   4. Add the user you created in the previous steps and click Map to confirm the action.

Everytime I press Map after doing the steps, it keeps giving me save error forbidden. I need to create 5 internal users with admin roles, what are my options here? I'm using the role all_access as per the document suggestion. 

[Henadence Anyam]

Hello Dinie,

Thank you for using Wazuh.

From the tests I was able to carry out, note that the all_access is a role reserved for the Security plugin environment. Reserved roles are restricted for any permission customizations.

What you can do to map your already generated user is to duplicate the all_access role. To do this, click Duplicate role then create and then proceed to map your user to that role (all_access_copy). I share a screenshot of the tests carried out to serve as a guide.

Note: To create a new user you must go to Security >> Internal users and select the Create internal user button.

Please let me know if this helps

Best Regards

[Dinie Rosli]

Hello Anyam, 

Yes, this is very helpful and after testing out 1 user and mapping it to this role, it's working as intended! Thanks a lot!

Best Regards