User Permissions: ACLs, Tags and Wizard Access Control

User Permissions

There are several permission systems that restrict what an user can see or manage.


The ACL system controls which elements an user can see or manage depending on the group they belong to.

For example:

  • A user may have reading permissions on the alert templates of the Application group and those of Administration on the Server group.
  • You will be able to see and assign templates to both groups, but you only have the option to edit or delete those of the Server group.

To find out more about the ACLs, click on this link.


One tag is a label that you may assign to a module.

An user could have the ACLs of some specific group restricted by Tags. If so, only these ACLs will be applied to the modules that contain those Tags.

For example:

  • An user may have reading or administration permissions on the Server group restricted to the Systems Tag.
  • It will only have these permissions on the modules, that even belonging to an agent of the Server group, will have the System Tag assigned.

To learn more about the tags, click on this link.

Wizard Access Control

Users have an access level assigned regarding the Metaconsole Wizard. This level may be Basic or Advanced.

Besides, alert templates and module components (local and network) will also have this access level.


Basic Access

Basic access users will only see in the Wizard the alerts corresponding to the alert templates with Basic level and the modules created from Basic level components.

Advanced Access

Advanced access level users will see in the Wizard the alerts and modules from both Basic and Advanced levels.


Apart from visibility, the access level also affects module configuration and its alerts.

The section Operation (Monitoring Wizard) explains in detail the differences between Basic and Advanced monitor configuration.

Go back to Pandora FMS documentation index