We should set up a user name for each person who will be using Zenoss, and all the users should log in using their user account, not as the admin user. Individual users can be granted the same privileges as the admin account. The security of the user accounts is important. Various roles and groups can be assigned to a user. In this article by Michael Badger, the following is discussed:

• How to add new users and edit the properties of their user accounts
• The various available roles and their privileges
• Administered objects such as devices and systems
• Creating and editing custom event views
• Attaching alerts to users or groups of users
• Creating alert escalations
• Customizing alert messages
• Setting a schedule for each alerting rule
• Adding and editing groups and assigning users to groups

User Accounts and their Properties

Working as the non-admin user has several benefits:

• Changes to settings are tracked via user name
• Custom alerting rules can be defined per user
• Access can be restricted per user

Let's add a new user:

1. Select Settings from the navigation panel.
2. Select the Users tab.
3. From the Users table menu, select Add New User.
4. Enter the User Name and Email address in the Add User dialog box.
5. Click OK to create the user account.

The new user name is added to the list of users (see following screenshot) along with columns for Email address, Pager, address, and Roles.

Before a new user can log in, we must specify a password. To create a password and configure the account, edit the user account by clicking on the user name from the Users table. The following table includes the fields we can set via the Edit Screen.

We use roles to define a user's level of access to the system. The following table lists the available roles from the most to the least restrictive access.

A step-by-step guide to configuring, using, and adapting this free Open Source network monitoring system - with a Foreword by Mark R. Hinkle, VP of Community Zenoss Inc. Discover, manage, and monitor IT resources Build custom event processing and alerting rules Configure Zenoss Core via an easy to use web interface Drag and drop dashboard portlets with Google Maps integration http://www.PacktPub.com/zenoss-core-network-and-system-monitoring/book

Administered Objects

For each user, we can assign a list of administered objects, which includes devices, systems, groups, and locations. By matching users to administered objects, we have an easy way to identify who is responsible for the object. The following screenshot shows the Administered Objects for a user.

To add an object, choose the appropriate option from the Administered Objects page menu. If we add a device, the Add Device dialog box filters the list of devices as we type. If we add a system, group, or location, we choose the object from a drop-down list.

Each administered object has a default role that we can change. We specify the user's default admin role on each user's Edit tab.

If we click on the object name, Zenoss displays the Status page for the device, system, group, or location. Each object also has an Administration page that lists the users identified as administrators. For example, navigate to a device and select More > Administration from the page menu to see the list of administrators for the device.

From the Administrators table of the object (see the previous screenshot), we see a list of users and Roles. Click on the user name to navigate back to the user's Edit page.

Event Views

Zenoss enables us to create custom event views per user. To define a custom event view for a user:

1. Edit the user.
2. Select the Event Views tab.
3. From the Event Views table menu, select Add Event View.
4. Enter a descriptive name (e.g: Events on Coyote) in the Add Event View dialog box.
5. Click OK to add the event view.

Each event view displays columns for type and event summary. By default, the newly created event view looks identical to the Event Console. Click on the name from the Event Views list to display and edit the view (see the following screen capture).

From the edit tab, we specify the following event view properties:

After we edit the view, click Save. Then click on the View tab so that the view gets displayed.

Alerting Rules

We attach alerts to users or groups of users. We'll cover groups in the next section, but for now, we'll add an alerting rule at the user level. To add an alerting rule, select the Alerting Rules tab (see the following screenshot) while editing the user name to display the list of rules assigned to the user.

The Alerting Rules table displays a summary of each rule including columns for Name, Delay, Repeat Time, Action, Enabled, and Send Clear. To add a new alerting rule:

1. Select Add Alerting Rules from the Alerting Rules table menu.
2. Enter a descriptive name in the Add Alerting Rule dialog box.
3. Click OK to add the new rule.
4. Click on the name in the Alerting Rules table to edit the rule properties (see the next screenshot).
5. Configure the alert and click Save.

The default rule sends an email when any device in a Production State generates a new event with a Severity level equal to or greater than Error. Zenoss also sends an alert when the event clears. However, the alert is disabled by default.

Let's take a look at each of the Alerting Rule properties:

An event filter consists of three parts: an event field, a comparison operator, and a value to compare to the event field.

We add a filter by selecting the event field from the Add Filter drop-down list. See Appendix A for a list of fields. Next, we specify a comparison operator, such as greater-than and less-than. Then we specify a value to match against the operator. The more filters we add to a rule, the more specific our alerting rule becomes.

Alert Escalations

By using the filters on an alerting rule, we can create an alert hierarchy that notifies another user when a certain condition occurs. We can create a new rule for a second user and add a filter that specifies a count value so that if the event is not acknowledged, the user is notified. For example, if our new filter specifies a count greater than five, we define a rule that does not trigger unless an event remains unacknowledged for five consecutive times.

Message

While editing our alerting rule, we have the ability to customize the text of the alert message Zenoss sends. To view the Message, click on the Message tab.

We can specify the Subject and the Body for both the down alert and the clear alert. As the text at the bottom of the Message tab indicates, the "message format is a Python format string. Fields are specified as %(fieldname)s." (refer to the previous screenshot). All the event fields are listed for reference.

If we set the alerting rule to send a page, we can only specify a subject line for the down and clear alerts because of likely character restrictions on the pager.

Schedule

We may set a schedule for each alerting rule so that the rule sends alerts only during the specified period. From the Edit tab of an alerting rule, click on the Schedule tab to view the Active Periods table. The Active Periods table displays a list of schedules sorted by Name with columns for Start, Duration, Repeat, and Enabled, as shown in the next screen capture.

To add a schedule, select Add Rule Window from the Active Periods table menu. Enter a descriptive name when prompted. Click OK to add the new schedule to the Active Periods table. Click on the name to display the active period's Status page.

On the Status page for the active period, we define the time of day when the alerting schedule is active (see the previous screenshot). The following table lists the available settings.

We may add as many active periods to an alerting rule as we need to accommodate each user's work schedule.

Groups

We've just learned how to define alerting rules on a per user basis, but if we have more than two or three users, we need a better way to handle our alerting rules. Fortunately, Zenoss provides groups, and the same alerting rule concepts that apply to users apply to groups.

We start by adding a new group to the Groups table of the Users tab in the Settings page. Next, we assign users to the group in the following way:

1. Select the group name.
2. Select Add Users from the Group table menu.
3. Choose the user names (ctrl + click to select multiple) from the Add Users To Group dialog box (refer to the following screenshot).
4. Select the Group name from the Add Users to Group dialog box.
5. Click OK to assign the users to the group.

Now that we have a newly created group with users assigned, click on the group name to display the group's Edit tab. From the Edit tab, we can add and remove users from our group. On the Administered Objects tab, we identify the relationship a device, system, group, or location has to a group.

To begin adding alerting rules for the group, select the Alerting Rules tab and follow the steps outlined in the previous section for individual users.

Summary

This article described managing user accounts, and also roles and the privileges associated with them. We also discussed administered objects, custom event views, alerts and groups.

A step-by-step guide to configuring, using, and adapting this free Open Source network monitoring system - with a Foreword by Mark R. Hinkle, VP of Community Zenoss Inc. Discover, manage, and monitor IT resources Build custom event processing and alerting rules Configure Zenoss Core via an easy to use web interface Drag and drop dashboard portlets with Google Maps integration http://www.PacktPub.com/zenoss-core-network-and-system-monitoring/bookk

About the Author