Forum Discussion

Lewis_Beard's avatar
Lewis_Beard
Icon for Expert rankExpert
23 days ago
Solved

How do access groups work? All options missing.

I need to allow a role to edit local Custom logicmodules only. I had seen the Access Groups but never tried them.

I made a new one, but after doing so, it does NOT show up under the Access Groups list of any roles. Nor do I have an "Access Groups" tab on My Module Toolbox. Screens below.

1) I made a new Access Group, but there are no permissions on the group itself, just a name. Whatever.

2) I then managed the role, in a new browser windows, and went to the settings and Access Groups settings for that role, but NOTHING shows up there, not even the default one.

3) I also went to the My Module Toolbox and edited a module, looking for a tab the documentation claims exists (no picture of course) for controlling Access Groups, also in a new browser, and again, I see nothing. And even when I edit the logicmodule there is nothing on the page about access groups.

 

So I just dont get it. All I want to do is make a new Access Group on the portal (DONE), and then have that guy show up under the settings for a role, so I can give a role access to that guy only, and also edit one module and add my MY TEST .... but nothing. Nothing show up anywhere.

Can someone explain? Thanks. I'm at my wits-end.

 

 

 

 

  • Asawari's avatar
    Asawari
    21 days ago

    Hey Lewis

    My name is Asawari, I am from the engineering team.

    I am happy to help you on your query.
    Creation of Access Group is the first screenshot that you have shared and creation of access group requires permission which is the second screenshot 
    Mentioned here https://www.logicmonitor.com/support/adding-a-role

    Access group are mapped to Logic modules hence their permissions are in Roles page under Modules Tab mentioned in https://www.logicmonitor.com/support/modules-role-permissions

    Mapping of AccessGroup to Modules is done in the modules editor mentioned in https://www.logicmonitor.com/support/access-groups-for-modules

    Please go through the above documents and let me know if you need further help. 
    Please do share your valuable feedback on usage of access groups. thanks!

12 Replies

Sort By
  • Lewis_Beard's avatar
    Lewis_Beard
    Icon for Expert rankExpert
    23 days ago

    I realize now that the link between the role and the access group isnt actually under settings -> access groups. I DID find my module on the next tab over, modules, and gave the group manage permissions. My bad.

    But I still cant find on the actual module itself how I can add it to the MY TEST access group.

    I dunno. I'll keep looking. Whoever designed UIv4 must thing completely different to me, maybe they like pineapple on their pizza or something. :) /justkidding

    • Asawari's avatar
      Asawari
      Icon for Employee rankEmployee
      21 days ago

      Hey Lewis

      My name is Asawari, I am from the engineering team.

      I am happy to help you on your query.
      Creation of Access Group is the first screenshot that you have shared and creation of access group requires permission which is the second screenshot 
      Mentioned here https://www.logicmonitor.com/support/adding-a-role

      Access group are mapped to Logic modules hence their permissions are in Roles page under Modules Tab mentioned in https://www.logicmonitor.com/support/modules-role-permissions

      Mapping of AccessGroup to Modules is done in the modules editor mentioned in https://www.logicmonitor.com/support/access-groups-for-modules

      Please go through the above documents and let me know if you need further help. 
      Please do share your valuable feedback on usage of access groups. thanks!

      • Lewis_Beard's avatar
        Lewis_Beard
        Icon for Expert rankExpert
        18 days ago

        I guess I will open a support ticket, since this doesn't seem to be me missing something obvious, and nothing jumped out to the community.

        But I will make a comment of where I left off for clarity:

        1. I created an Access Group. The group itself has no features other than Name, Tenant, and Description. I left Tenant blank because I have no idea what it is. There are no permissions to edit here.

        2. On the role I want to enable granular access to modules, I went to the Modules permissions, went under the "My Modules Toolbox" section (below Access Groups) and checked the "Modules: Manage (Limited)" box, and saved the changes.

          NOTE: I believe this corresponds to your first link, the section "Configuring Modules Permissions" step 5 aka "To enable a user to have permissions for Access Groups within Modules". The only difference is that, in your documentation, this is happening during role creation. I'm editing an existing role. So I click Save instead of Finish.

        3. I opened up the Modules section of the portal (I can do anything on the portal), filtered for the specific module I wanted to grant access to, and selected it. On the overview shown on the bottom of the UI when I've selected the module, I only see the usual tabs: Info, AppliesTo, Active Discovery, Collection, Normal Datapoints, Complex Datapoints, Graphs, Local History. I see NO Access Groups tab. When I edit the module itself, again, I see NO Access Groups tab at all, and there is nothing on the page.

          NOTE: this corresponds to your second link, "Assigning an Access Group to a Module" and I believe it would be Step 3, "Select the Access Groups tab" ... but no such tab seems to exist.


        Anyway, I will open up a trouble ticket later this afternoon. I'm probably missing something. I just wanted to make the state clear. I'm sure I'm just missing something simple.

        Thanks.

         

  • Ankit01's avatar
    Ankit01
    Icon for Employee rankEmployee
    23 hours ago

    Hi Lewis,

    Allow me to assist you with your queries.

    Yes, the creation of an access group involves three fields, one of which is Tenant. A Tenant typically refers to a logically isolated environment within a LogicMonitor platform instance that supports multi-tenancy. This is particularly useful in scenarios such as Managed Service Providers (MSPs) or large enterprises with multiple departments, where each tenant represents a distinct customer or business unit.

    To modify an existing role, you followed the correct steps. I believe you referred to Step 5 on this page:
    https://www.logicmonitor.com/support/modules-role-permissions

    From Role > Permission > Modules > Access Group, you can assign permissions for specific access groups. A user logged in with an assigned role will only be able to perform actions that the role permits. If you are unable to see the Access Group tab, it's likely because your role does not have the "Map and unmap Modules to Access Groups" permission enabled under Role > Permission > Modules.

    Please do share your valuable feedback on the usage of access groups. Thanks!