Discovery rules visible to all users if a Zabbix Administrator
I wanted to tenant off Zabbix for multiple private environments. And with that comes security and visibility of neighboring information.
Steps to reproduce:
Result:
Discovery rules are visible to ALL "Zabbix administrators", and not tied does by permissions of host group hierarchy
Ideal outcome:
Restrictions on discovery rules to be visible/relational to host groups in order to show/hide based on permissions sets.
Steps to reproduce:
- Create host groups intended for private tenancy nd segregated permission sets of hosts
- create discovery rules for private tenant A and tenant B networks related to two different environments (which you want to keep private)
- Elevate one user from private tenant A
- They can see the discovery rule for private tenant B and name etc.
Result:
Discovery rules are visible to ALL "Zabbix administrators", and not tied does by permissions of host group hierarchy
Ideal outcome:
Restrictions on discovery rules to be visible/relational to host groups in order to show/hide based on permissions sets.