IT Hygiene
129 views
Skip to first unread message
pdnb
Oct 2, 2025, 10:00:34 AM (8 days ago) Oct 2
to Wazuh | Mailing List
Hi i just upgrade wazuh 4.13.0 and i use RBAC to control users. how to setup permission for IT Hygiene module ?
i try setup
i try setup
wazuh-states-inventory-* for role on index side , but without success
Luis Enrique Chico Capistrano
Oct 2, 2025, 11:58:05 AM (8 days ago) Oct 2
to Wazuh | Mailing List
Hi pdnb,
Please allow me some time; I will try to reproduce the issue and get back to you with an update as soon as possible.
Please allow me some time; I will try to reproduce the issue and get back to you with an update as soon as possible.
pdnb
Oct 3, 2025, 4:13:26 AM (7 days ago) Oct 3
to Wazuh | Mailing List
that perms :
give me access to Dashboard in IT Higiene - rest are inaccessible with :
give me access to Dashboard in IT Higiene - rest are inaccessible with :
Luis Enrique Chico Capistrano
Oct 3, 2025, 12:05:43 PM (7 days ago) Oct 3
to Wazuh | Mailing List
Hi, thanks for the feedback.
I've asked the team for some help here, as I was trying to reproduce and solve the issue. I'll get back to you as soon as I have news.
I've asked the team for some help here, as I was trying to reproduce and solve the issue. I'll get back to you as soon as I have news.
Luis Enrique Chico Capistrano
Oct 3, 2025, 7:39:37 PM (7 days ago) Oct 3
to Wazuh | Mailing List
Hi,
I followed the guide "Creating and setting a Wazuh read-only user" to configure the user, which allowed me to view the IT Hygiene module and the rest of the interface.
I'm not sure if you are looking for any kind of restriction, but if that is the case, could you provide more details?
pdnb
Oct 7, 2025, 6:49:11 AM (3 days ago) Oct 7
to Wazuh | Mailing List
Thanks for the quick reply. Unfortunately, I can't do exactly the same thing because I have different indexes and different team members with different levels of access to the indexes, so * is out of the question. I have the configuration below and currently do not have access to IT Hygiene>System>Hardware and Software>Windows KBs.
Below my config :
{
"wazuh_operator": {
"reserved": false,
"hidden": false,
"cluster_permissions": [
"cluster_composite_ops_ro"
],
"index_permissions": [
{
"index_patterns": [
"wazuh-states-*",
"wazuh-alerts-*",
"wazuh-statistics*",
".*"
],
"dls": "",
"fls": [],
"masked_fields": [],
"allowed_actions": [
"read"
]
}
],
"tenant_permissions": [
{
"tenant_patterns": [
"global_tenant"
],
"allowed_actions": [
"kibana_all_read"
]
}
],
"static": false
Below my config :
{
"wazuh_operator": {
"reserved": false,
"hidden": false,
"cluster_permissions": [
"cluster_composite_ops_ro"
],
"index_permissions": [
{
"index_patterns": [
"wazuh-states-*",
"wazuh-alerts-*",
"wazuh-statistics*",
".*"
],
"dls": "",
"fls": [],
"masked_fields": [],
"allowed_actions": [
"read"
]
}
],
"tenant_permissions": [
{
"tenant_patterns": [
"global_tenant"
],
"allowed_actions": [
"kibana_all_read"
]
}
],
"static": false
Luis Enrique Chico Capistrano
Oct 7, 2025, 9:37:28 PM (3 days ago) Oct 7
to Wazuh | Mailing List
Hi,
I was able to reproduce the issue. I've notified the team for help and will share an update as soon as I have news.
Luis Enrique Chico Capistrano
Oct 8, 2025, 10:09:49 AM (2 days ago) Oct 8
to Wazuh | Mailing List
You could also add permissions to wazuh-monitoring*. For more information, please refer to the following document.
Reply all
Reply to author
Forward
0 new messages