This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Creating a user with API rights only to Orion.Events table

Hi,

I have some API calls that read and write to Orion.Events table, but for now am using an account with admin rights.

Is there a way to create a user the least privileges, I just need to have read and write rights to only Orion.Events table?

Thanks.

Parents

0 KMSigma.SWI over 1 year ago

To the best of my knowledge the Orion.Events entity is only accessible to accounts with full admin rights. I'm going to play around a little bit to see if there's some other setting/permission I'm omitting, but I think you might be stuck.

You may want to upvote an existing Feature Request about granular rights on the platform (More granular permissions for users - Feature Requests - The Orion Platform - THWACK (solarwinds.com).
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 KMSigma.SWI over 1 year ago

To the best of my knowledge the Orion.Events entity is only accessible to accounts with full admin rights. I'm going to play around a little bit to see if there's some other setting/permission I'm omitting, but I think you might be stuck.

You may want to upvote an existing Feature Request about granular rights on the platform (More granular permissions for users - Feature Requests - The Orion Platform - THWACK (solarwinds.com).
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Adelazz over 1 year ago in reply to KMSigma.SWI

Thank you !

I did upvote the feature request.

I'm still checking on my side also, please let me know if you find any option.
Cancel
Vote Up 0 Vote Down

Cancel
0 KMSigma.SWI over 1 year ago in reply to Adelazz

I tried all kinds of different permissions, and I couldn't find a way without granting admin rights to create event entries.

What's your exact use case? There's a chance the alerting engine could do it for you.
Cancel
Vote Up 0 Vote Down

Cancel
0 Adelazz over 1 year ago in reply to KMSigma.SWI
My use case is:

Inserting new records on Orion.Events table using POST request to:
ORION-IP:17778/.../Orion.Events

Reading from Orion.Events table using GET request from:
ORION-IP:17778/.../Query EventTime,Message FROM Orion.Events where EventType = XXXX or EventType = XXXX ORDER BY EventTime ASC;"

Reading from Orion.AlertHistory table using GET request from:
ORION-IP:17778/.../Query TOP 10 TimeStamp, Message FROM Orion.AlertHistory where (AlertObjectID = XXXX or AlertObjectID = XXXX ) order by TimeStamp desc
Cancel
Vote Up 0 Vote Down

Cancel
0 KMSigma.SWI over 1 year ago in reply to Adelazz

Yerah - sorry. Maybe I was unclear. What would cause #1 from above?
Cancel
Vote Up 0 Vote Down

Cancel
0 Adelazz over 1 year ago in reply to KMSigma.SWI

I have some custom HTMLs with JS scripts interacting with other systems.

For logging purposes, I'm inserting records into Orion.Events table, which will be used later to generate a report using the query in #2.
Cancel
Vote Up 0 Vote Down

Cancel
0 KMSigma.SWI over 1 year ago in reply to Adelazz
That's what I was looking for. Is it a web page or something that can be "read" by the SolarWinds Platform? If so, they might be able to use the alerting engine to trigger the event.

Example:

If the web page contains the word "down."

Trigger an alert.

Alert Action: Write something to the Event Log.

Otherwise, I'm afraid you'd going to either need to use an admin account or directly edit the SQL table (which is a very bad idea).
Cancel
Vote Up 0 Vote Down

Cancel