Closed runswithd6s closed 5 years ago
Hi @runswithd6s - We have some documentation within our support site here: https://www.logicmonitor.com/support/kubernetes-monitoring/. The user in LM needs to have permission to:
So you can create a role with less than full-admin rights, as long as it encompasses the permissions listed above. Can you verify whether the PlatformAutomation role you created has permission to create Collectors?
@skt44 Excellent. Adding the "Manage" checkbox for "Collector" enabled argus to add the appropriate resources. I did not see any dashboards created. Did you mean "Allow to create Private Dashboards"? I did create a "Kubernetes Clusters" group in the Dashboards and gave it "manage" permissions to that.
@runswithd6s okay, great! The dashboards actually are only created if you go through the UI wizard, more instructions here, but we're working on a way to make the templates used to create these dashboards more accessible.
Ah, ok. We're using terraform and helm charts to deploy this. We did have to change how we named our helm charts to include a unique prefix to helm names, especially for things like the confluent helm charts for kafka. We wanted to simply call them 'confluent', but we had to settle for 'environmentprefix-confluent'. This made configuration more difficult with our containers, since now they had to know about this prefix to correctly identify sources of services.
tl;dr A UI wizard wouldn't work well for our CI/CD infrastructure as code approach to this.
Thanks for your assistance! I think this solves our problems!
There isn't much in the way of documentation regarding what is needed for a user account to create the necessary LogicMonitor objects. Aside from a full-rights administrator, can we limit permissions to a specific sub-folder? We have specified the
clusterGroupId
for the folder we want argus to create items under. The user has been given a role that has rights to:PlatformAutomation
role createdPlatformAutomation
role