Monthly Archives: May 2020

icinga2 disable swap check

icinga2

I had to disable swap check for one of my hosts.
This is how I’v done it.

nano /etc/icinga2/conf.d/services.conf
apply Service "swap" {
  import "generic-service"

  check_command = "swap"

  assign where host.name == NodeName
  ignore where host.name == "my_host"
}
service icinga2 restart

on icinga2 service.conf I’v added the following line ignore where host.name == “my_host” and then restarted icinga2

Installing Icinga 2

Uncategorized

Add the Icinga repository to your package management configuration

yum install https://packages.icinga.com/epel/icinga-rpm-release-7-latest.noarch.rpm

Error when icinga repository isn’t on our package management configuration

Install & start icinga2

yum install icinga2
systemctl enable icinga2
systemctl start icinga2

Install check plugins

yum install nagios-plugins-all

After this install you might have to reboot the server to ensure gnutls are properly updated.

SELinux

Check SELinux status

sestatus

Install icinca SELinux policy

yum install icinga2-selinux

Nano Syntax Highlighting

yum install nano-icinga2

Icinga Web 2

Install maria db

yum install mariadb-server mariadb
systemctl enable mariadb
systemctl start mariadb
mysql_secure_installation

Create & grant previleges

CREATE DATABASE icinga;
GRANT SELECT, INSERT, UPDATE, DELETE, DROP, CREATE VIEW, INDEX, EXECUTE ON icinga.* TO 'icinga'@'localhost' IDENTIFIED BY 'passswwwwooorrrddd';
quit

Import mysql schema

mysql -u root -p icinga < /usr/share/icinga2-ido-mysql/schema/mysql.sql

Edit mysql confs

nano /etc/icinga2/features-available/ido-mysql.conf

Enable ido mysql

icinga2 feature enable ido-mysql
systemctl restart icinga2

Install web

Apache

yum install httpd
systemctl enable httpd
systemctl start httpd

(falta firewall / iptables)

Icinga 2 REST API

icinga2 api setup

It creates the root user & a auto-generated password

nano /etc/icinga2/conf.d/api-users.conf

Add icingaweb2 user

nano /etc/icinga2/conf.d/api-users.conf

Add the following code – be sure you change the password from this example

object ApiUser "icingaweb2" {
  password = "PASSSSSSWOOORDDDDD"
  permissions = [ "status/query", "actions/*", "objects/modify/*", "objects/query/*" ]
}

Installing Icinga Web 2

yum install centos-release-scl
yum install icingaweb2 icingacli

Enable PHP FPM

systemctl start rh-php71-php-fpm.service
systemctl enable rh-php71-php-fpm.service

Generate icinga token

icingacli setup token create

Restart httpd

service httpd restart

Icinga Web 2

You should be able to access icinga web 2, using your server ip address and /icingaweb2/

Setup token was previously generated, and you can see it using

icingacli setup token show

The directory /etc/icingaweb2 is not writable

chcon -R -t httpd_sys_rw_content_t /etc/icingaweb2/

You are using (probably) database icinga.
You need to create a new database (for example icinga_web2) with the proper user permissions,

Monitoring IDO Resource

User icinga (first table created) for Monitoring IDO Resource

mysql.schema.sql failed to open stream

You can find the mysql.schema.sql at https://github.com/Icinga/icingaweb2/blob/master/etc/schema/mysql.schema.sql.
You can download and import the file to that location… or import through mysql.

HOORAY!