Enter your own Checkmk ideas or vote for existing ones

In order to continually improve Checkmk, we're looking for your ideas. They provide valuable input to our roadmap discussions and allow us to contact you directly for more in-depth discussions or during development. A few tips:

Further information can be found in this guide. If you have any questions, please send an email to feedback@checkmk.com.

Impersonate as another user to check views and dashboards

Allow an admin to impersonate himself as another user, so he/she can see & verify views/dashboards, as the other user will see them. This helps to develop views or ...
Suggested by: Thomas Lippert (22 May, '22) Upvoted: 07 May Comments: 7
Accepted User management

SAML2 for existing users (no new creation)

Currently, you can only create new users with SAML2 via EntraID, but not authenticate existing ones (e.g. which are already synchronized via LDAP anyway and the ...
Suggested by: Florian (29 Nov, '23) Upvoted: 06 May Comments: 0
Under consideration User management

Mass editing of User attributes

If you have to add/change/remove attributes for a group of users, it can quickly become very time-consuming. It would be very helpful if you could search for users ...
Suggested by: Lars Sörensen (16 Mar, '23) Upvoted: 17 May Comments: 1
Under consideration Usability User management

Add agent updater registration role

Add a minimal role for registration users for the automatic agent updater.
Suggested by: Dennis Ehmer (27 Apr, '22) Upvoted: 14 May Comments: 4

LDAP Config via RESTAPI

Currently it is not possible to configure ldap settings via rest (bind, port, user_dn, group_dn etc.). Please made it available.
Suggested by: Stephan (31 Aug, '22) Upvoted: 07 May Comments: 3

First logon with SAML - automatic activation

If a new user logins with the SAML connection the first time, then an admin needs to activate the change before the user can access hosts and services. It should be ...
Suggested by: Chris (03 Feb) Upvoted: 30 Apr Comments: 0
Under consideration User management

Add support for SAML authentication with distributed sites

See ticket: https://forum.checkmk.com/t/saml-authentication-distributed-monitoring/42839
Suggested by: Thomas (02 Jan) Upvoted: 26 Apr Comments: 4
Under consideration User management

Set time zones user-based

Currently, the time zone for CheckMK is used from the operating system. There should be an option for each user to choose their own time zone.
Suggested by: Lars Gottaut (12 Jul, '22) Upvoted: 22 Apr Comments: 4
Under consideration User management

Add OpenID-Connect support

It would be wishful to have CMK (Enterprise) support OIDC as a federative method next to SAML. Also because some public cloud-services only support(or prefer) ...
Suggested by: Michael Honkoop (10 Nov, '23) Upvoted: 19 Mar Comments: 0
Under consideration User management

Define "contact group" in "LDAP Connection" like roles

Migrated from the forum. Reference: https://forum.checkmk.com/t/define-contact-group-in-ldap-connection/15249 Currently, to associate “contact groups” with LDAP ...
Suggested by: Robin Gierse (22 Dec, '22) Upvoted: 08 Mar Comments: 0
Under consideration Usability User management

Support for LDAP via StartTLS

Currently, Checkmk has the option to securely connect to LDAP servers for user sync via “LDAPS”, also known as “LDAP over TLS/SSL”, which can be activated by ticking ...
Suggested by: Malte (23 Feb, '23) Upvoted: 26 Feb Comments: 2
Under consideration User management

LDAP-Connection via STARTTLS

If i had a whish for free... ;-) It would be very nice to have the option to use a LDAP-Connection with STARTTLS for Usersync with LDAP. Some users of checkmk ...
Suggested by: JPT (25 Oct, '23) Upvoted: 19 Feb Comments: 0
Under consideration User management

REST API: Missing authorized_sites for Users GET enpoints

The responses of the following REST API "Users" endpoints do not include the "authorized_sites" list. Even if there is a list of "authorized_sites" defined for the ...
Suggested by: Nicolas (09 Nov, '23) Upvoted: 03 Jan Comments: 0
Under consideration RestAPI User management

Configure "Authorized Sites" for LDAP accounts based on LDAP group membership

The authorized sites for an LDAP account should also be "syncable" from LDAP groups like for contact groups and roles.
Suggested by: Robert Sander (05 Dec, '23) Upvoted: 05 Dec, '23 Comments: 0
Under consideration User management

Define user roles and permissions per host group and/or setup folders

This allows to have admin permissions for one set of hosts and viewer permissions on a different set. A set can be defined per host group and/or per setup folder
Suggested by: Thomas Lippert (16 May, '22) Upvoted: 17 Nov, '23 Comments: 3
Under consideration User management

Better visualization of derived roles

When creating a role by deriving it from an existing one, the role overview shows a column "Modifications", giving the number of permissions deviating from the source ...
Suggested by: joernc (22 Jun, '23) Upvoted: 18 Sep, '23 Comments: 0
Under consideration Usability User management

Hide Setup rules within folders without permission to users

As of now, Setup folders can be hidden from users, so that hosts within these folders are invisible to them. This does not apply to Setup rules for said hidden ...
Suggested by: Simon Kneuper (23 Jun, '22) Upvoted: 21 Aug, '23 Comments: 1
Under consideration Usability User management

Two-factor authentication via SafeNet 5110+

2FA support support SafeNet 5110+
Suggested by: manjunath Sirsikar (26 Jul, '23) Upvoted: 27 Jul, '23 Comments: 0
Under consideration User management

Move/Get Debug UI Option as User Profile Option

The Global settings - User interface - Debug Mode Option would be nice as a User Profile Option IMHO. Actually it can switched on/off which applies for all user and ...
Suggested by: dabrain (11 Jul, '23) Upvoted: 16 Jul, '23 Comments: 0
Under consideration Usability User management

Allow menu overwrites in user menu

When using non-local users it would be nice to change the links from the user menu to external source for change of password and 2fa config. Allow to set per login ...
Suggested by: Sune Beermann (25 Apr, '23) Upvoted: 06 Jun, '23 Comments: 0
Under consideration Usability User management

Restrict the permission to create notifications on specific folders

It should be possible to create notifications only for hosts located in folders to which the user is also authorized. In other words, it should not only be possible ...
Suggested by: Hardy (20 May, '22) Upvoted: 27 Apr, '23 Comments: 1
Under consideration Notifications User management

Setup: Users GUI: show users with insecure password in an upper Warning list

Like shown in the update message of (cmk-update-config): 16/29 Check for insecure password hashes, enforce password reset... Please show up the info as upper ...
Suggested by: JPH (23 Feb, '23) Upvoted: 24 Apr, '23 Comments: 0
Under consideration User management