Group By - Not Just a SQL Clause

Foglight has many dashboards that you can give users access to.  The Databases dashboard has built-in user access control to limit access to only the instances that a Foglight administrator grants. 

I had a customer ask if there was an easier way to limit access to their instances. They were mapping each Foglight user to individual instances. This is an ok practice if you've got a small number of instances and users. But this customer had almost 300 instances and several dozen end users.

The good news is, there is a way! If you've organized your database instances into groups (lower left panel of the Databases dashboard), you can grant a user access to the group. 

But wait, there's more!

If you create a Foglight security group (Administration -> Users & Security), you can add your Foglight users to a security group. THEN, you can use that security group (DM_Group in the image below) to grant access to groups of databases. After that, it's a simple matter of adding a user to a security group, or an instance to a database group.

It should be noted that a better practice would be to name your Foglight security groups the same as your database groups for easier management.

Note - the user access control is limited to the Databases dashboard. If you need to lock down access on other dashboards (eg. "Databases - SQL PI" or "Alarms"), you will need to modify the allowed roles on those dashboards to be something that your Database user group doesn't have access to!

To start your trial of Foglight for Databases, just click here.

About the Author
Darren Mallette
I am a senior systems consultant specializing in performance monitoring for virtualization, databases, applications and end user experience. I've been in the IT world for over 20 years, with experience...