Forum Discussion

Professor

6 years ago

!!! Collector Debug Console Security !!!

In doing some of the troubleshooting with LM, I realized that the debug console opens !POSH sessions as admin without asking or verifying. Anyone that can log into the console and gain access to t...

Matthew_Dunham

Former Employee

6 years ago

Hi @Cole McDonald -

The LogicMonitor Collector runs jobs using the permissions it has inherited from the Collector. Where the Collector is run as a privileged user so will the jobs that it's launched.

Regardless of which Collector permissions model you adopt, as a best practice we recommend using our role-based access controls to limit "Manage" access to your Collectors. You can do so by assigning individuals that don't need Collector Debug functionality the "manager" role rather than the "administrator" role. This allows you to effectively limit the scope of your end-users based on the principle of least privilege.

Forum Discussion

!!! Collector Debug Console Security !!!

Related Content

LogicMonitor Portal Security

Important Security Announcement

"Enable Test Script" UIv4 security experiences?

Security Hardening of LM

Collectors: Open Telemetry vs. LM Collector

Recent Discussions

Dashboard Sharing – An Inline Framing Method

2021-12-15 US Office Hours

Live Training - Tuning Datapoints and Alerts - 15th JUNE 2022 - APAC

Live Training - Introduction to Dashboards - 18th MAY 2022 - APAC

2022-05-11- APAC Product Overview -Collectors, Resources/Groups, Dashboards