Forum Discussion
Matthew_Dunham
6 years agoFormer Employee
Hi @Cole McDonald -
The LogicMonitor Collector runs jobs using the permissions it has inherited from the Collector. Where the Collector is run as a privileged user so will the jobs that it's launched.
Regardless of which Collector permissions model you adopt, as a best practice we recommend using our role-based access controls to limit "Manage" access to your Collectors. You can do so by assigning individuals that don't need Collector Debug functionality the "manager" role rather than the "administrator" role. This allows you to effectively limit the scope of your end-users based on the principle of least privilege.
Related Content
- 6 months ago
- 2 years ago
- 6 months agoAnonymous