[one-users] ACL's in vDC

Mateusz Skała mateusz.skala at budikom.net
Thu Jul 17 04:14:53 PDT 2014 

view is set on vdcadmin, opennebula version is 4.6.2

---
Pozdrawiam
Mateusz Skała
mateusz.skala at budikom.net

budikom.net
ul. Trzy Lipy  3, GPNT, bud. C
80-172 Gdańsk
email: biuro at budikom.net
tel. +48 58 58 58 708

W dniu 2014-07-17 10:49, Daniel Molina napisał(a):
> Hi,
> 
> What OpenNebula version are you running? Could you check what view
> first-group-admin is using, you can check this in the settings section
> (top-right corner)
> 
> Cheers
> 
> On 16 July 2014 14:59, Mateusz Skała <mateusz.skala at budikom.net>
> wrote:
> 
>> Hi,
>> I'm trying to setup vdc admin acl's. He should have rights to
>> create vm's from his image's and templates. I setup group
>> (first-group) and admin (first-group-admin) for this group, next i
>> set acls:
>> Applies to       Affected resources                  
>>   Resource ID / Owned by         Allowed operations      
>> Zone
>>  All                 Zones                    
>>                   All                      
>> use,manage            All
>>  first-group    Virtual Machines, Images, VM templates      
>>     All                           create        
>>    All
>>  first-group    Virtual Machines, Images, VM templates      
>>  first-group            use,manage,admin,create     All
>>  All                 Hosts                    
>>                   All                      
>> use,manage            All
>>  All                 Datastores                  
>>                ID 0                          
>> use              All
>>  All                 Datastores                  
>>                ID 2                          
>> use              All
>>  All                 Datastores                  
>>                ID 101                        
>> use              All
>> 
>> 101 is id of my ceph datastore, id 0 is system datastore.
>> Network, image and template owner is first-group.
>> I don't have add button to create VM. If oneadmin create vm and
>> assign it to first-group then everything is ok, but i will allow to
>> modify template by first-group.
>> Can someone help me?
>> 
>> --
>> Regards,
>> Mateusz
>> _______________________________________________
>> Users mailing list
>> Users at lists.opennebula.org
>> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org [1]
> 
> --
> 
> --
> Daniel Molina
> Project Engineer
> OpenNebula - Flexible Enterprise Cloud Made Simple
> www.OpenNebula.org [2] | dmolina at opennebula.org | @OpenNebula
> 
> Links:
> ------
> [1] http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
> [2] http://www.OpenNebula.org

More information about the Users mailing list