-#############################################################################
-## THIS FILE IS COPIED TO THE FINAL LOCATION USING PUPPET
-## ITS AUTHORITATIVE HOME IS THE DSA-NAGIOS CONFIGURATION GIT
-#############################################################################
-
-
#################################################################
#
-# CGI.CFG - Sample CGI Configuration File for Nagios
+# CGI.CFG - Sample CGI Configuration File for Icinga
#
#################################################################
# The CGIs will read the main and host config files for any other
# data they might need.
-main_config_file=/etc/nagios3/nagios.cfg
+main_config_file=/etc/icinga/icinga.cfg
+
+
+# ATTRIBUTE BASED AUTHORIZATION FILE
+# This option will include a file defining authroization based on
+# attributes.
+#authorization_config_file=/etc/icinga/cgiauth.cfg
# PHYSICAL HTML PATH
-# This is the path where the HTML files for Nagios reside. This
+# This is the path where the HTML files for Icinga reside. This
# value is used to locate the logo images needed by the statusmap
# and statuswrl CGIs.
-physical_html_path=/usr/share/nagios3/htdocs
+physical_html_path=/usr/share/icinga/htdocs
# URL HTML PATH
# This is the path portion of the URL that corresponds to the
-# physical location of the Nagios HTML files (as defined above).
+# physical location of the Icinga HTML files (as defined above).
# This value is used by the CGIs to locate the online documentation
-# and graphics. If you access the Nagios pages with an URL like
-# http://www.myhost.com/nagios, this value should be '/nagios'
+# and graphics. If you access the Icinga pages with an URL like
+# http://www.myhost.com/icinga, this value should be '/icinga'
# (without the quotes).
-url_html_path=/nagios3
+url_html_path=/icinga
+
+
+
+# URL STYLESHEETS PATH
+# This option allows to define an url stylesheet path other than the
+# default ($url_html_path/stylesheets). This will be useful when
+# adding custom stylesheets in another location.
+# If not set, the default location will be used.
+
+url_stylesheets_path=/icinga/stylesheets
+# HTTP CHARSET
+# This defines charset that is sent with HTTP headers.
+
+http_charset=utf-8
+
+# NAGIOS PROCESS CHECK COMMAND
+# This is the full path and filename of the program used to check
+# the status of the Nagios process. It is used only by the CGIs
+# and is completely optional. However, if you don't use it, you'll
+# see warning messages in the CGIs about the Nagios process
+# not running and you won't be able to execute any commands from
+# the web interface. The program should follow the same rules
+# as plugins; the return codes are the same as for the plugins,
+# it should have timeout protection, it should output something
+# to STDIO, etc.
+#
+# Note: The command line for the check_nagios plugin below may
+# have to be tweaked a bit, as different versions of the plugin
+# use different command line arguments/syntaxes.
+
+icinga_check_command=/usr/lib/nagios/plugins/check_nagios /var/lib/icinga/status.dat 5 '/usr/sbin/icinga'
+
# CONTEXT-SENSITIVE HELP
# This option determines whether or not a context-sensitive
# help icon will be displayed for most of the CGIs.
# Values: 0 = disables context-sensitive help
# 1 = enables context-sensitive help
-show_context_help=1
+show_context_help=0
+
+
+
+# HIGHLIGHT TABLE ROWS
+# This option allows you to define if table rows in status.cgi
+# will be highlighted or not.
+# Values: 0 = disables row highlighting
+# 1 = enables row highlighting
+
+highlight_table_rows=1
use_pending_states=1
-nagios_check_command=/usr/lib/nagios/plugins/check_nagios /var/cache/nagios3/status.dat 5 '/usr/sbin/nagios3'
+
+# Logging
+
+# USE LOGGING
+# If you want to log information from cgi's (e.g. all submitted commands)
+# then set this option to 1, default is 0 (off).
+# WARNING:
+# This log is highly experimental and changes may occure without notice. Use at your own risk!!
+
+use_logging=0
+
+
+# CGI LOG FILE
+# This is the cgi log file for information about what users are doing.
+# At the moment only submitted commands from cmd.cgi will be logged.
+
+cgi_log_file=/usr/share/icinga/htdocs/log/icinga-cgi.log
+
+
+# CGI LOG ROTATION METHOD
+# This is the log rotation method that should be used to rotate
+# the cgi log file. Values are as follows..
+# n = None - don't rotate the log
+# h = Hourly rotation (top of the hour)
+# d = Daily rotation (midnight every day)
+# w = Weekly rotation (midnight on Saturday evening)
+# m = Monthly rotation (midnight last day of month)
+
+cgi_log_rotation_method=d
+
+
+# CGI LOG ARCHIVE PATH
+# This is the directory where archived (rotated) cgi log files should be
+# placed (assuming you've chosen to do log rotation).
+
+cgi_log_archive_path=/usr/share/icinga/htdocs/log
+
+
+# FORCE COMMENT
+# This option forces the users of to comment every action they perform.
+# The comments get logged into cgi log file. This option only has effect
+# if logging is switched on. See option "use_logging"
+# Default is 0 (off), to activate it set it to 1 (on).
+
+enforce_comments_on_actions=0
+
+
+# FIRST DAY OF WEEK
+# Here you can set if your week starts on sunday or monday.
+# Default is 0 (Sunday), set it to 1 if your week start monday.
+
+first_day_of_week=0
# AUTHENTICATION USAGE
-# This option controls whether or not the CGIs will use any
+# This option controls whether or not the CGIs will use any
# authentication when displaying host and service information, as
-# well as committing commands to Nagios for processing.
+# well as committing commands to Icinga for processing.
#
# Read the HTML documentation to learn how the authorization works!
#
# NOTE: It is a really *bad* idea to disable authorization, unless
# you plan on removing the command CGI (cmd.cgi)! Failure to do
-# so will leave you wide open to kiddies messing with Nagios and
+# so will leave you wide open to kiddies messing with Icinga and
# possibly hitting you with a denial of service attack by filling up
# your drive by continuously writing to your command file!
#
# access to the CGIs has been authenticated in some manner! If you
# define this variable, anyone who has not authenticated to the web
# server will inherit all rights you assign to this user!
-
+
#default_user_name=guest
# SYSTEM/PROCESS INFORMATION ACCESS
# This option is a comma-delimited list of all usernames that
-# have access to viewing the Nagios process information as
+# have access to viewing the Icinga process information as
# provided by the Extended Information CGI (extinfo.cgi). By
# default, *no one* has access to this unless you choose to
# not use authorization. You may use an asterisk (*) to
# authorize any user who has authenticated to the web server.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
-authorized_for_system_information=*
-
+authorized_for_system_information=icingaadmin
+#authorized_contactgroup_for_system_information=
# CONFIGURATION INFORMATION ACCESS
# for the hosts and services they are contacts for. You may use
# an asterisk (*) to authorize any user who has authenticated
# to the web server.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
-authorized_for_configuration_information=*
+authorized_for_configuration_information=icingaadmin
+#authorized_contactgroup_for_configuration_information=
+# RAW COMMANDLINE CONFIGURATION INFORMATION ACCESS
+# This option is a comma-delimited list of all usernames that
+# can view a command in config command expander as icinga would
+# execute it. To resolve all MACROS it is necessary to allow
+# read access to the web server for resource.cfg .
+# CAUTION: $USERXX$ vars and custom vars can contain sensitive
+# data.
+# Alternatively you can specify contactgroups too.
+
+authorized_for_full_command_resolution=icingaadmin
+#authorized_contactgroup_for_full_command_resolution=
+
# SYSTEM/PROCESS COMMAND ACCESS
# This option is a comma-delimited list of all usernames that
-# can issue shutdown and restart commands to Nagios via the
+# can issue shutdown and restart commands to Icinga via the
# command CGI (cmd.cgi). Users in this list can also change
# the program mode to active or standby. By default, *no one*
# has access to this unless you choose to not use authorization.
# You may use an asterisk (*) to authorize any user who has
# authenticated to the web server.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
-authorized_for_system_commands=nagiosadmin
-
+authorized_for_system_commands=icingaadmin
+#authorized_contactgroup_for_system_commands=
# GLOBAL HOST/SERVICE VIEW ACCESS
# for hosts or services that they are contacts for (unless you
# you choose to not use authorization). You may use an asterisk (*)
# to authorize any user who has authenticated to the web server.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
-authorized_for_all_services=*
-authorized_for_all_hosts=*
-
+authorized_for_all_services=dsa-guest,icingaadmin
+authorized_for_all_hosts=dsa-guest,icingaadmin
+#authorized_contactgroup_for_all_services=
+#authorized_contactgroup_for_all_hosts=
# GLOBAL HOST/SERVICE COMMAND ACCESS
# These two options are comma-delimited lists of all usernames that
# can issue host or service related commands via the command
-# CGI (cmd.cgi) for all hosts and services that are being monitored.
-# By default, users can only issue commands for hosts or services
-# that they are contacts for (unless you you choose to not use
+# CGI (cmd.cgi) for all hosts and services that are being monitored.
+# By default, users can only issue commands for hosts or services
+# that they are contacts for (unless you you choose to not use
# authorization). You may use an asterisk (*) to authorize any
# user who has authenticated to the web server.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
+
+authorized_for_all_service_commands=icingaadmin
+authorized_for_all_host_commands=icingaadmin
+#authorized_contactgroup_for_all_service_commands=
+#authorized_contactgroup_for_all_host_commands=
+
+
+# READ-ONLY USERS
+# A comma-delimited list of usernames that have read-only rights in
+# the CGIs. This will block any service or host commands normally shown
+# on the extinfo CGI pages. It will also block comments from being shown
+# to read-only users.
+# Alternatively you can specify contactgroups too, starting
+# with Icinga 1.5.0
-authorized_for_all_service_commands=nagiosadmin
-authorized_for_all_host_commands=nagiosadmin
+#authorized_for_read_only=user1,user2
+#authorized_contactgroup_for_read_only=
+# SHOW ALL SERVICES THE HOST IS AUTHORIZED FOR
+# By default, a user can see all services on a host, if the user is
+# authorized as contact for the host only. By disabling this option,
+# the user must be an authorized contact for the service too in order
+# to view it.
+# Values: 0 - disabled, user must be authorized for services too
+# 1 - enabled, user can view all services on authorized host
+
+show_all_services_host_is_authorized_for=1
+
+
+# SHOW PARTIAL HOSTGROUPS
+# By default, a user only sees a hostgroup and the hosts within it if
+# they are an authorized contact for all of the hosts of the group. By
+# enabling this option hostgroups will show a partial listing of hosts
+# the user is an authorized contact for in the hostgroups.
+# Values: 0 - disabled, user only sees full hostgroups (default)
+# 1 - enabled, user sees partial hostgroups
+
+show_partial_hostgroups=0
# STATUSMAP BACKGROUND IMAGE
-# This option allows you to specify an image to be used as a
+# This option allows you to specify an image to be used as a
# background in the statusmap CGI. It is assumed that the image
-# resides in the HTML images path (i.e. /usr/local/nagios/share/images).
+# resides in the HTML images path (i.e. /usr/local/icinga/share/images).
# This path is automatically determined by appending "/images"
# to the path specified by the 'physical_html_path' directive.
# Note: The image file may be in GIF, PNG, JPEG, or GD2 format.
+
+# STATUSMAP TRANSPARENCY INDEX COLOR
+# These options set the r,g,b values of the background color used the statusmap CGI,
+# so normal browsers that can't show real png transparency set the desired color as
+# a background color instead (to make it look pretty).
+# Defaults to white: (R,G,B) = (255,255,255).
+
+#color_transparency_index_r=255
+#color_transparency_index_g=255
+#color_transparency_index_b=255
+
+
+
+
# DEFAULT STATUSMAP LAYOUT METHOD
# This option allows you to specify the default layout method
# the statusmap CGI should use for drawing hosts. If you do
# STATUSWRL INCLUDE
-# This option allows you to include your own objects in the
+# This option allows you to include your own objects in the
# generated VRML world. It is assumed that the file
-# resides in the HTML path (i.e. /usr/local/nagios/share).
+# resides in the HTML path (i.e. /usr/local/icinga/share).
#statuswrl_include=myworld.wrl
# REFRESH RATE
# This option allows you to specify the refresh rate in seconds
-# of various CGIs (status, statusmap, extinfo, and outages).
+# of various CGIs (extinfo, outages, status, statusmap and tac).
refresh_rate=90
+# REFRESH TYPE
+# This option determines what type of refresh should be used.
+# You can choose between http header and javascript. By
+# default javascript (1) is activated. If you have trouble
+# using javascript then try refresh via http header (0).
+
+refresh_type=1
+
# ESCAPE HTML TAGS
# This option determines whether HTML tags in host and service
+# PERSISTENT ACKNOWLEDGEMENT COMMENTS
+# This options determines whether the initial state of the
+# checkbox "Persistent Comment:" for service and host problem
+# acknowledgements is checked or unchecked
+
+persistent_ack_comments=0
+
# SOUND OPTIONS
# These options allow you to specify an optional audio file
# <varname>=<sound_file>
#
# Note: All audio files must be placed in the /media subdirectory
-# under the HTML path (i.e. /usr/local/nagios/share/media/).
+# under the HTML path (i.e. /usr/local/icinga/share/media/).
#host_unreachable_sound=hostdown.wav
#host_down_sound=hostdown.wav
# URL TARGET FRAMES
-# These options determine the target frames in which notes and
-# action URLs will open.
+# These options determine the target frames in which notes and
+# action URLs will open. Default is main frame.
-action_url_target=_blank
-notes_url_target=_blank
+action_url_target=main
+notes_url_target=main
+#action_url_target=_blank
+#notes_url_target=_blank
# LOCK AUTHOR NAMES OPTION
-# This option determines whether users can change the author name
-# when submitting comments, scheduling downtime. If disabled, the
-# author names will be locked into their contact name, as defined in Nagios.
+# This option determines whether users can change the author name
+# when submitting comments, scheduling downtime. If disabled, the
+# author names will be locked into their contact name, as defined in Icinga.
# Values: 0 = allow editing author names
# 1 = lock author names (disallow editing)
+# DEFAULT DOWNTIME DURATION
+# This option defines the default duration (in seconds) of fixed and
+# flexible downtimes. Default is 7200 seconds (2 hours).
+
+default_downtime_duration=7200
+
+
+
+# DEFAULT EXPIRING ACKNOWLEDGEMENT DURATION
+# This option defines the default duration (in seconds) of a expiring
+# acknowledgement. Default is 86400 seconds (1 day).
+
+default_expiring_acknowledgement_duration=86400
+
+
+
+# SHOW LONG PLUGIN OUTPUT IN STATUS OPTION
+# This option allows you to specify the length of status information
+# in output of status.cgi. If you set the value to 1 it shows the
+# full plugin output instead of the first line only.
+# Default value is 0.
+
+status_show_long_plugin_output=0
+
+
+
+# DISPLAY STATUS TOTAL
+# This option allows you to specify if the
+# Host Status Totals and Service Status Totals
+# should be displayed.
+# Default value is 0.
+
+display_status_totals=0
+
+
+
+# SHOW ONLY HARD STATES IN TAC OPTION
+# This options allows you to specify if the tactical overview
+# should only show hard states on hosts and services.
+# By default disabled, all states will be shown.
+
+tac_show_only_hard_state=0
+
+
+
+# SHOW CHILD HOSTS IN EXTINFO OPTION
+# This Option allows you to specify if the extended host information
+# cgi will show child hosts for the selected host.
+# 0 = disabled
+# 1 = only show immediate child hosts
+# 2 = show immediate and all child hosts
+# NOTE: Option 2 could be a real performance killer in
+# large installations, so use with care.
+# By default disabled, as this could be a performance killer.
+
+extinfo_show_child_hosts=0
+
+
+
+# SUPPRESS MAINTENANCE DOWNTIME
+# This options suppresses the state coloring of hosts and services
+# that are in a scheduled downtime. It sets their coloring to gray,
+# so they no longer draw extra attention to themselves, making it
+# so only actual problems are the ones that stand out.
+# By default it is disabled.
+
+suppress_maintenance_downtime=0
+
+
+# SHOW TAC INFORMATION IN TOP FRAME
+# This options places tactical overview information in
+# the top frame similar to the view that's in icinga-web.
+# By default it is enabled.
+
+show_tac_header=1
+
+
+# SHOW PENDING IN TAC HEADER
+# This options enables the display of pending counts in
+# the tac header. If your display is less than 1024x768
+# and this is enabled, the tactical information may not
+# fit well in the top frame.
+# By default it is enabled.
+
+show_tac_header_pending=1
+
+
+
+# SHOW INITIAL STATES IN SHOWLOG OPTION
+# This options allows you to specify if initial states
+# of hosts and services should be shown in showlog.cgi
+# Note: This Option only works if the option
+# "log_initial_states" in icinga.cfg is set to 1.
+# By default it's enabled. Default is 0.
+
+#showlog_initial_states=0
+
+
+
+# SHOW CURRENT STATES IN SHOWLOG OPTION
+# This options allows you to specify if current states
+# of hosts and services should be shown in showlog.cgi
+# Note: This Option only works if the option
+# "log_current_states" in icinga.cfg is set to 1.
+# By default it's enabled. Default is 0.
+
+#showlog_current_states=0
+
+
+
+# DEFAULT NUM DISPLAYED LOG ENTRIES OPTION
+# This options specifies the number of log entries
+# displayed by default in showlog.cgi. To display
+# all log entries by default set this value to 0.
+# Default is 10000.
+
+#default_num_displayed_log_entries=10000
+
+
+
+# CSV DELIMITER
+# This option determines the character which should act as
+# delimiter. Default is ";".
+
+#csv_delimiter=;
+
+
+
+# CSV DATA ENCLOSURE
+# This option determines the character which should act as
+# data enclosure to wrap in the data. Default is "'".
+
+#csv_data_enclosure='
+
+
+
+# TAB-FRIENDLY <TITLE>S
+# Activating this option changes the <title> of status.cgi
+# and extinfo.cgi when they refer to a single host, service,
+# or group. They will then read:
+# [Host]
+# {HostGroup}
+# ServiceDesc @ Host
+# (ServiceGroup)
+# These are easier to read and find if you use (many) tabs
+# in your browser.
+# Default is enabled. 0=disabled, 1=enabled
+
+tab_friendly_titles=1
+
+
+# SERVICE STATES TO ANNOTATE WITH CURRENT NOTIFICATION NO.
+# Set this to an OR of the service state identifiers for
+# which status.cgi should not only report "Attempts" (e.g.,
+# "3/3" for a HARD non-OK state with max_check_attempts=3)
+# but also the current notification number ("(#0)" if no
+# problem notification has been sent yet, etc.). This is
+# helpful to identify services which switched between
+# different non-OK states a lot, or services which have a
+# first_notification_delay set and are "not yet officially"
+# considered in trouble.
+# Relevant values from include/statusdata.h (look them up
+# *there* if you want to be *really* sure):
+# #define SERVICE_PENDING 1
+# #define SERVICE_OK 2
+# #define SERVICE_WARNING 4
+# #define SERVICE_UNKNOWN 8
+# #define SERVICE_CRITICAL 16
+# You'll likely want to use add_notif_num_hard=0 (default)
+# or add_notif_num_hard=28 (warn+crit+unknown). There's an
+# add_notif_num_soft affecting services in a SOFT state
+# for sake of completeness, too.
+
+#add_notif_num_hard=28
+#add_notif_num_soft=0
+
+
# SPLUNK INTEGRATION OPTIONS
# These options allow you to enable integration with Splunk
#splunk_url=http://127.0.0.1:8000/
+