Overview

To access the Interface, you must point your Web Browser to the URL provided during installation.

  • By default the Visualization Tool is accessible on the dedicated port 7767 (HTTP). For example : http://172.16.1.130:7767

 

This chapter explain how to configure the Visualization UI

  • The file /etc/shinken/modules/webui.cfg contains configuration parameters.
  • you can set 
    • the HTTPS
    • the port 
    • activated modules
    • the language
    • ... 

 

HTTPS

The UI can be now protected by an HTTPS access.

In the webui.cfg,  

  • to activate the HTTPS:
    • http_use_ssl      0
      • by default it is set to 0. 
      • Set it to 1 to activate.
         
  • to set certificates by updating the 3 following parameters:
    • http_ssl_cert      /etc/shinken/certs/server.cert
    • http_ssl_key      /etc/shinken/certs/server.key

 

Accessing to the UI will still use the default dedicated port 7766 (but in HTTPS).


 

Log in

You must Sign in to access the Administration Tool :

  1. Enter your Username and Password
     
  2. Click the Login Button or hit Enter

 

If Shinken is connected to an active directory, please use your usual account

 

 

If an error occurred (wrong login or password), you will be prompted again

 

Link the Login authentication to an Active Directory Server

Configure the auth_active_directory module

Edit the auth_active_directory.cfg in /etc/shinken/modules:

 Property Example Description
ldap_urildaps://myserverThe address of the ldap server
user userThe user name to connect to the lapd server
password passwordThe password
DCDC =google,DC=comA REMPLIR

Then activate this module in the webui.cfg file

Edit the webui.cfg file in /etc/shinken/modules

 Property Example Description

 modules            

Cfg_password, auth-active-directory, Mongodb, webui-enterprise, sla

By default, auth-active-directory should be present in the line. If missing, add it to activate the module.
It will first try to identify the login/pass provided in the via the active directory module, then check in the synchronizer database, and then reject it if not found or valid.