[one-users] how to create an internal user.

Carlos Martín Sánchez cmartin at opennebula.org
Tue Jun 7 02:34:36 PDT 2011 

Hi Salma,

It looks like you didn't set-up the environment variables referenced here
[1] for your new account (specially the PATH).

I would recommend you to use the :authentication: simple option in
auth.conf, to authenticate users with the one_auth file contents
(username:password). This way you can play around with the authorization and
then move on to the strongest ssh authentication.

Regards,
Carlos.

[1] http://opennebula.org/documentation:rel2.2:cg#opennebula_users
--
Carlos Martín, MSc
Project Major Contributor
OpenNebula - The Open Source Toolkit for Cloud Computing
www.OpenNebula.org <http://www.opennebula.org/> | cmartin at opennebula.org


2011/6/2 salma rebai <rebai.salma at gmail.com>

> hi,
> thank you for your response.
> But i still have problems with user management and some unclear points. In
> fact,  i have Opennebula installed in   a self contained directory.
> if i want to create a new user to opennebula, should that user be really
> created in my System or it is  not necessary.
> I follow this guide [1], i have created a new user in my system, then i
> generated the rsa- key, but i don't understand how to do the extraction of
> public key. the guide mention that it should be done bye the users by using
> the command "oneauth key.." and sent to the administrators..... but the user
> have not  this command .
>
>          -bash: oneauth: command not found
>
> I have extracted the key using the oneadmin account, and i create the new
> user with the oneuser create command. the user is added in the  table list,
> and when i execute the command  i have this result
>
>            [oneadmin at node020 ~]$ oneauth login salma
>            export ONE_AUTH=/data1/opennebula/.one/one_ssh
>            [oneadmin at node020 ~]$
>
>
>  but i could not login as the new user to execute opennebula
> fonctionalities.
> what is the problem?? am i doing some thing wrong??
> Can you give me some clarification please.
> thanks in advance.
>
> [1]http://opennebula.org/documentation:rel2.2:users
>
>
> Best regards,
> SALMA.
>
>
> 2011/6/1 Carlos Martín Sánchez <cmartin at opennebula.org>
>
>> Hi,
>>
>> Take a look at these links [1,2].
>>
>> In /lib/one/ruby/simple_permissions.rb (or
>> $ONE_LOCATION/lib/ruby/simple_permissions.rb in a self-contained
>> installation) you have to modify the auth_object method. Assuming you want
>> to give user 7 the same authorization as oneadmin:
>>
>> --- a/src/authm_mad/simple_permissions.rb
>> +++ b/src/authm_mad/simple_permissions.rb
>> @@ -78,7 +78,7 @@ class SimplePermissions
>>      # Authorizes each of the tokens. All parameters are strings. Pub
>>      # means public when "1" and private when "0"
>>      def auth_object(uid, object, id, action, owner, pub)
>> -        return true if uid=='0'
>> +        return true if (uid=='0' || uid=='7')
>>
>>          auth_result=false
>>
>> Best regards,
>> Carlos.
>>
>> [1] http://opennebula.org/documentation:rel2.2:users
>> [2] http://opennebula.org/documentation:rel2.2:auth
>>
>>
>> --
>> Carlos Martín, MSc
>> Project Major Contributor
>> OpenNebula - The Open Source Toolkit for Cloud Computing
>> www.OpenNebula.org <http://www.opennebula.org/> | cmartin at opennebula.org
>>
>>
>> On Wed, Jun 1, 2011 at 12:24 PM, salma rebai <rebai.salma at gmail.com>wrote:
>>
>>> Hi all,
>>> I work with Opennbeula2.2. I would know is that possible to create a
>>> second administrator account to opennebula( an internel user). What should I
>>> do to create an internal user to OpenNebula. Is there some configuration in
>>> the auth file to make.
>>> Thanks in advance.
>>>
>>> --
>>> Salma REBAI
>>> Ingénieur Informatique
>>> Mastère Réseaux et Systèmes Multimédia
>>> Ecole Nationale des Sciences Informatiques Univ. Manouba, Tunisie
>>> Institut Télécom SudParis
>>> rebai.salma at gmail.com
>>>
>>> _______________________________________________
>>> Users mailing list
>>> Users at lists.opennebula.org
>>> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>>>
>>>
>>
>
>
> --
> Salma REBAI
> Ingénieur Informatique
> Mastère Réseaux et Systèmes Multimédia
> Ecole Nationale des Sciences Informatiques Univ. Manouba, Tunisie
> Institut Télécom SudParis
> rebai.salma at gmail.com
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20110607/e1b425ef/attachment-0003.htm>

More information about the Users mailing list