Messages

Thanks for the patch!
Regards

I've modified the permissions of my admin user removing the following GUI privileges:

• All pages
• Diagnostics: Backup / Restore
• Diagnostics: Configuration History
• Diagnostics: Factory defaults
• Diagnostics: Halt system
• System: User Manager
• System: User Manager: Add Privileges

However, the user can only access the System: Settings: Logging page but NOT System: Settings: Logging / targets (syslog-ng page if I'm not mistaken). Is this intended?
Thanks for the support.

EDIT: apparently, the ALL pages does enable the access to https://myfirewall/ui/syslog/ page, however this also gives back the access to the other Diagnostics: xxx pages I wanted to disable...

Dear Franco: you are the best. Thanks SO much.

Best

Hi Franco, thanks for your answer. I see your point, however there is still another issue: I gave another try with the privileges and removed the "GUI:All pages". Now the user cannot access the System:Access:User page (as expected) but also the Lobby:Password page is removed from the menu. Is this the intended behavior? In this way the user, simply, cannot change her OWN password!

Hi Franco and thanks for you interest: what I do is simply to create a new user and select for it all the privileges BUT the two I just mentioned. Then, the user can simply go into the System:Access:Users and do whatever she wants (e.g. change root password and privileges).

Hi all, I'm a new opnsense user so, please, don't blame me too much if this is a silly question! I would like to have an admin user with limited powers, in the sense that it should not be able to add users or change passwords of other users. I tried to create the user removing the privileges "GUI System: User Manager" and "GUI System: User Manager: Add Privileges", but it seems to me that it keeps the right to change root's password.
Is there something I am missing? Many thanks for your support