This content is intended for users of Centreon in a Managed Service Provider (MSP) context.
Storage of user identification information
For each customer of the provider, the Centreon central server stores in its database the following user identification information in order to access the monitoring server:
- Alias/Login, password
- E-mail address
- Phone number (optional, for associated notification)
The central server also stores additional parameters for each user:
- Language, time zone
- Notification settings
- Access control groups (ACL)
- Each user can access their information in the Administration > Settings > My Account menu.
- Users can be created, edited and deleted from the Settings > Users menu by a user having the necessary rights.
User actions logs
If a user has the rights to configure the monitoring (defined in the user's ACLs), an entry in the logs stored in the database and linked to the user account will be created for each edition action:
- Logs can be accessed through the Administration > Logs menu, with the ability to filter by user.
- These logs can only be deleted by accessing the SQL database and deleting any relevant records.
Centreon recommends to secure access to the monitoring platform by enabling HTTPS mode on the Apache server. An official signed certificate is required to ensure a minimum level of security.
In order to remain consistent with your security policy and to better manage the lifecycle and approvals of users, Centreon can connect to an Active Directory or LDAP directory. Centreon recommends to enable this option and not to use a local account.
Centreon provides a Centreon data extraction module to allow the implementation of a backup policy of the monitoring data. Centreon strongly recommends to activate this module and especially to export the backup on another server.