• Support
  • Forums
  • Blogs

Nagios Config management


Entry Level
I've been working on using Nagios more for availability monitoring but it is severely disjointed in Alienvault USM and OSSIM.  If you want to use Nagios for anything more than up/down monitoring of hosts and ports you need to Jailbreak the SIEM and manually edit the confs.  Would like to see the ability to enable other Nagios plugins and be able to edit the nagios confs from the web interface.  It would also be helpful to include additional base nagios checks such as check_wmi_plus and check_nwc_health.  These plugins would cover monitoring services and hardware for windows and most networking equip.

To work around this issue until an office fix, I built a NagiosQL instance on another server that allows me to enable custom checks and manage the confs more efficiently.  It pushes the confs over SSH and the only downside is that Nagios service needs to be restarted each time a conf is changed.  I suspect you could leverage this method from the web interface and automate the restart of nagios through Ansible. 


Share post:


  • Hi drock,

    I agree that it would be nice to see this functionality built into the web interface of USM.  

    I am currently trying to get additional monitoring going with Nagios as well and was wondering if you could point me in the right direction.  I know I have to edit the confs but I'm lost on where to look to learn what edits need to be done.  I'm just trying to start off with Windows disk space monitoring.  

  • Hello @drock,

       Indeed, the USM is configured with basic Nagios settings; however, end-users still possess the ability to customize Nagios via standard Nagios Objects :: 

        USM // OSSIM stores host information :: 

    # /etc/nagios3/conf.d/ossim-configs/hosts


    - kratos
Sign In or Register to comment.