Hello, I've been running ovirt hosted engine for around a month already without any major interruptions. Last week i tied it to freeipa, to be able to give permissions to other people, but so far no success because of the following problem : All users can see all VM's. I tried clearing all permission entries ( leaving the admin only ) and the re-adding and it didn't help at all. I am attaching a few screenshots to better describe : Most of the vm's have no permissions attached to them, but they are still visible to everyone that logs from the userpanel What am i doing wrong ? Regards,
On 01/29/2015 09:35 AM, Nikolai Bochev wrote:
Hello,
I've been running ovirt hosted engine for around a month already without any major interruptions. Last week i tied it to freeipa, to be able to give permissions to other people, but so far no success because of the following problem :
All users can see all VM's. I tried clearing all permission entries ( leaving the admin only ) and the re-adding and it didn't help at all.
I am attaching a few screenshots to better describe :
The problem is that you are assigning system permissions. If you assign system permissions you have permission to whole system. If you want to assign a permission to user on a specific vm(or object), you have to select the object, then click 'permissions' subtab, then click 'add', then find your user and choose the role for him.
Most of the vm's have no permissions attached to them, but they are still visible to everyone that logs from the userpanel What am i doing wrong ?
Regards,
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Ok, but if i don't add "System" permissions to a user with "UserRole" they cannot login at all ? On Thu, Jan 29, 2015 at 10:56 AM, Ondra Machacek <omachace@redhat.com> wrote:
On 01/29/2015 09:35 AM, Nikolai Bochev wrote:
Hello,
I've been running ovirt hosted engine for around a month already without any major interruptions. Last week i tied it to freeipa, to be able to give permissions to other people, but so far no success because of the following problem :
All users can see all VM's. I tried clearing all permission entries ( leaving the admin only ) and the re-adding and it didn't help at all.
I am attaching a few screenshots to better describe :
The problem is that you are assigning system permissions. If you assign system permissions you have permission to whole system.
If you want to assign a permission to user on a specific vm(or object), you have to select the object, then click 'permissions' subtab, then click 'add', then find your user and choose the role for him.
Most of the vm's have no permissions attached to them, but they are still visible to everyone that logs from the userpanel What am i doing wrong ?
Regards,
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
If you add for example 'UserRole' on VM, then your user should login to UserPortal without any problem and see his VM. On 01/29/2015 09:58 AM, Nikolai Bochev wrote:
Ok, but if i don't add "System" permissions to a user with "UserRole" they cannot login at all ?
On Thu, Jan 29, 2015 at 10:56 AM, Ondra Machacek <omachace@redhat.com <mailto:omachace@redhat.com>> wrote:
On 01/29/2015 09:35 AM, Nikolai Bochev wrote:
Hello,
I've been running ovirt hosted engine for around a month already without any major interruptions. Last week i tied it to freeipa, to be able to give permissions to other people, but so far no success because of the following problem :
All users can see all VM's. I tried clearing all permission entries ( leaving the admin only ) and the re-adding and it didn't help at all.
I am attaching a few screenshots to better describe :
The problem is that you are assigning system permissions. If you assign system permissions you have permission to whole system.
If you want to assign a permission to user on a specific vm(or object), you have to select the object, then click 'permissions' subtab, then click 'add', then find your user and choose the role for him.
Most of the vm's have no permissions attached to them, but they are still visible to everyone that logs from the userpanel What am i doing wrong ?
Regards,
_________________________________________________ Users mailing list Users@ovirt.org <mailto:Users@ovirt.org> http://lists.ovirt.org/__mailman/listinfo/users <http://lists.ovirt.org/mailman/listinfo/users>
WebAdmin is for admin and has permissions to see anything in the system. For power users please use the power user portal. On 01/29/2015 10:35 AM, Nikolai Bochev wrote:
Hello,
I've been running ovirt hosted engine for around a month already without any major interruptions. Last week i tied it to freeipa, to be able to give permissions to other people, but so far no success because of the following problem :
All users can see all VM's. I tried clearing all permission entries ( leaving the admin only ) and the re-adding and it didn't help at all.
I am attaching a few screenshots to better describe :
Most of the vm's have no permissions attached to them, but they are still visible to everyone that logs from the userpanel What am i doing wrong ?
Regards,
_______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
-- Yaniv Dary Red Hat Israel Ltd. 34 Jerusalem Road Building A, 4th floor Ra'anana, Israel 4350109 Tel : +972 (9) 7692306 8272306 Email: ydary@redhat.com IRC : ydary
participants (4)
-
Gianluca Cecchi -
Nikolai Bochev -
Ondra Machacek -
Yaniv Dary