[one-users] Problem with virtual network ACLs for multiple users
Carlos Martín Sánchez
cmartin at opennebula.org
Mon Jul 23 02:57:07 PDT 2012
Hi Michael and Jan,
I've been trying to reproduce your problem, and everything works fine for
me. Maybe this is a documentation problem, and some concepts are not as
clear as we thought.
Each resource has an owner and group, and permissions for each of them. The
permissions are set with the chown command, and are quite similar to the
unix file permissions [1]. By default, resources are created with 600, or
PERMISSIONS
OWNER : um-
GROUP : ---
OTHER : ---
If you create a vnet as oneadmin, and want all the users to be able to use
it in their VMs, simply execute 'onevnet chmod <id> 604', to set USE
permissions for OTHER. Similarly, if you want to make a VNet available to
its group, then execture chmod <id> 640.
Regards
[1] http://opennebula.org/documentation:rel3.6:chmod
--
Carlos Martín, MSc
Project Engineer
OpenNebula - The Open-source Solution for Data Center Virtualization
www.OpenNebula.org | cmartin at opennebula.org |
@OpenNebula<http://twitter.com/opennebula><cmartin at opennebula.org>
On Mon, Jul 23, 2012 at 10:40 AM, Jan Benadik <jan.benadik at atos.net> wrote:
> Hi all,
>
> from the OpenNebula 3.6 version I have the same problem (no problem in
> previous version).
>
> Jan
>
> Dňa 21.07.2012 11:30, Michael Rebstock wrote / napísal(a):
>
> Hello Everybody,****
>
> ** **
>
> I have a problem when trying to use Opennebula with more than one user. I
> have a virtual network with the owner "oneadmin". When I log in with a
> self-created user "oneuser" and try to deploy a new virtual machine, there
> pops up an errormessage, that the user has not the permission to use the
> network I specified in the Template. When I change the owner of this
> network to "oneuser", he is able to deploy VMs. From this point on oneadmin
> isn't able to deploy a VM. ****
>
> I also tried to create two different users who are in the same group and
> set the ownership of the network to this group but this also didn't work.
> ****
>
> ** **
>
> In the ACL-documentation [0] I found the following: "@106 NET/#47 USE" and
> I already tried it out -without success.****
>
> ** **
>
> What am I doing wrong? Is it possible to let different users use the same
> network without making them the owner of the same?****
>
> Thanks in advance.****
>
> ** **
>
> Best Regards****
>
> Michael****
>
> ** **
>
> [0] http://opennebula.org/documentation:archives:rel3.4:manage_acl****
>
>
> _______________________________________________
> Users mailing listUsers at lists.opennebula.orghttp://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>
>
> --
>
> *Ján Beňadik*
> Managed Services - Solution Design Architect
> +421 46 5151 332
> +421 903 691 634
> jan.benadik at atos.net <//jan.benadik at atos.net>
> Vinohradnícka 6, 971 01 Prievidza
> www.sk.atos.net
> __________________________________
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opennebula.org
> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20120723/6bdba739/attachment-0003.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 1723 bytes
Desc: not available
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20120723/6bdba739/attachment-0006.gif>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 281 bytes
Desc: not available
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20120723/6bdba739/attachment-0007.gif>
More information about the Users
mailing list