Re: [ovirt-users] user permissions
Hi
You didn't really specify what you would like to accomplish, and what permissions were
granted and on what object.
In general, we have two types of roles: User and Admin roles.
If a user has any admin role on any object, then he can login to the admin portal.
So, as long as you don't assign the user with admin role he will not be able to login
to the admin portal.
Giving PowerUser role on a DC will allow the user to create VMs and Disks through the user
portal.
Is that what you would like to accomplish?
Oved
----- Original Message -----
From: "Jorick Astrego" <j.astrego(a)netbulae.eu>
To: users(a)ovirt.org
Sent: Tuesday, July 22, 2014 11:32:16 AM
Subject: [ovirt-users] user permissions
Hi,
In our 3.4.3 environment I started adding external users (it is
connected to a freeipa server) and I'm having some problems setting the
correct permissions.
When I give all user roles to a user, I cannot create a vm and get an
error "User is not authorized to perform this action". I tried setting
it on the system level, DC level and cluster level.
I needed to give this user an administrator role with only exactly the
same vm and disk permissions (nothing extra) and things work ok, but he
can now login to the admin portal. So I blocked it with a .htaccess
which is not the prettiest solution.
Am I doing things wrong?
Also the user disappeared from the "System permissions" overview but can
still login, which is a bit weird.
Kind regards,
Jorick Astrego
Netbulae
_______________________________________________
Users mailing list
Users(a)ovirt.org
http://lists.ovirt.org/mailman/listinfo/users