diff --git a/pandora_console/include/functions_api.php b/pandora_console/include/functions_api.php
index 36153d963d..4ef93e6af1 100644
--- a/pandora_console/include/functions_api.php
+++ b/pandora_console/include/functions_api.php
@@ -7905,7 +7905,7 @@ function api_set_event_validate_filter_pro($trash1, $trash2, $other, $trash3) {
 	}
 
 	$table_events = 'tevento';
-	if (defined ('METACONSOLE')) {
+	if (is_metaconsole()) {
 		$table_events = 'tmetaconsole_event';
 	}
 	
@@ -7958,6 +7958,13 @@ function api_set_event_validate_filter_pro($trash1, $trash2, $other, $trash3) {
 		if (($other['data'][7] != null) && ($other['data'][7] != -1)) {
 			$filterString .= 'AND utimestamp < ' . $other['data'][7];
 		}
+
+		if (!users_can_manage_group_all("EW")) {
+			$user_groups = implode (',', array_keys(users_get_groups(
+				$config['id_user'], "EW", false
+			)));
+			$filterString .= " AND id_grupo IN ($user_groups) ";
+		}
 	}
 
 	$count = db_process_sql_update($table_events,
@@ -7979,7 +7986,7 @@ function api_set_event_validate_filter($trash1, $trash2, $other, $trash3) {
 	$simulate = false;
 	
 	$table_events = 'tevento';
-	if (defined ('METACONSOLE')) {
+	if (is_metaconsole()) {
 		$table_events = 'tmetaconsole_event';
 	}
 	
@@ -7999,7 +8006,13 @@ function api_set_event_validate_filter($trash1, $trash2, $other, $trash3) {
 		}
 		
 		$filterString = otherParameter2Filter($other);
-		
+
+		if (!users_can_manage_group_all("EW")) {
+			$user_groups = implode (',', array_keys(users_get_groups(
+				$config['id_user'], "EW", false
+			)));
+			$filterString .= " AND id_grupo IN ($user_groups) ";
+		}
 	}
 	
 	if ($simulate) {
@@ -9608,6 +9621,10 @@ function api_set_create_event($id, $trash1, $other, $returnType) {
 		}
 		
 		if ($other['data'][1] != '') {
+			if (!check_acl($config['id_user'], $other['data'][1], "AR")) {
+				returnError('forbidden', 'string');
+				return;
+			}
 			$values['id_grupo'] = $other['data'][1];
 		}
 		else {
@@ -9616,9 +9633,26 @@ function api_set_create_event($id, $trash1, $other, $returnType) {
 		}
 		$error_msg ='';
 		if ($other['data'][2] != '') {
-			if (!util_api_check_agent_and_print_error($other['data'][2], 'string', 'AR')) {
+			$id_agent = $other['data'][2];
+			if (is_metaconsole()) {
+				// On metaconsole, connect with the node to check the permissions
+				$agent_cache = db_get_row('tmetaconsole_agent', 'id_agente', $id_agent);
+				if ($agent_cache === false) {
+					returnError('id_not_found', 'string');
+					return;
+				}
+				if (!metaconsole_connect(null, $agent_cache['id_tmetaconsole_setup'])) {
+					returnError('error_create_event', __("Cannot connect with the agent node."));
+					return;
+				}
+				$id_agent = $agent_cache['id_tagente'];
+			}
+
+			if (!util_api_check_agent_and_print_error($id_agent, 'string', 'AR')) {
+				if (is_metaconsole()) metaconsole_restore_db();
 				return;
 			}
+			if (is_metaconsole()) metaconsole_restore_db();
 		}
 		else {
 			if($other['data'][19] != ''){