[Users] oVirt 3.2 beta: Usb redirection and low level usb access
Hello, I'm testing a WIndows XP vm with native usb redirection and oVirt 3.2 beta Currently I'm using a Fedora 17 client with Firefox 18 Some questions: - when setting native usb redirection I still get the warning at bottom: Migration is NOT currently supported using SPICE Native USB redirection Is it still true? Any plan to overcome? - when I'm in full screen of my windows XP VM, I plug an usb key into client and I get (from my client OS) the message Privileges are required for low level USB device access (for USB device passthrough and I have to put my password to get access to the usb device inside the VM. I think I gain access because I'm part of wheels group, and does this imply a normal user cannot attach usb? Can I bypass this step? see screenshot here (where there is also hw discovery for smartcard enabled don't consider it....): https://docs.google.com/file/d/0BwoPbcrMv8mvUUR4VjJaVFgzcjg/edit?usp=sharing Thanks, Gianluca
On Thu, Feb 14, 2013 at 10:44 AM, Gianluca Cecchi wrote:
Hello, I'm testing a WIndows XP vm with native usb redirection and oVirt 3.2 beta
- when I'm in full screen of my windows XP VM, I plug an usb key into client and I get (from my client OS) the message
Privileges are required for low level USB device access (for USB device passthrough
Could it be that modifying the file /usr/share/polkit-1/actions/org.spice-space.lowlevelusbaccess.policy that is part of spice-glib rpm I can bypass this? I read about it in RHE 6.4 release notes, but I didn't find mention in the docs on how to change it... Currently on my fedora 17 client the file contains what below; how is it supposed to be changed? Thanks Gianluca <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE policyconfig PUBLIC "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN" "http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd"> <policyconfig> <vendor>The Spice Project</vendor> <vendor_url>http://spice-space.org/</vendor_url> <icon_name>spice</icon_name> <action id="org.spice-space.lowlevelusbaccess"> <description>Low level USB device access</description> <message>Privileges are required for low level USB device access (for usb device pass through).</message> <defaults> <allow_inactive>no</allow_inactive> <allow_active>auth_admin_keep</allow_active> </defaults> </action> </policyconfig>
Hi, Gianluca Cecchi píše v St 27. 02. 2013 v 14:14 +0100:
On Thu, Feb 14, 2013 at 10:44 AM, Gianluca Cecchi wrote:
Hello, I'm testing a WIndows XP vm with native usb redirection and oVirt 3.2 beta
- when I'm in full screen of my windows XP VM, I plug an usb key into client and I get (from my client OS) the message
Privileges are required for low level USB device access (for USB device passthrough
Could it be that modifying the file /usr/share/polkit-1/actions/org.spice-space.lowlevelusbaccess.policy that is part of spice-glib rpm I can bypass this?
I read about it in RHE 6.4 release notes, but I didn't find mention in the docs on how to change it...
Currently on my fedora 17 client the file contains what below; how is it supposed to be changed?
To allow redirection without any prompts to user that is currently logged in to local session. David
Thanks Gianluca
<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE policyconfig PUBLIC "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN" "http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd"> <policyconfig>
<vendor>The Spice Project</vendor> <vendor_url>http://spice-space.org/</vendor_url> <icon_name>spice</icon_name>
<action id="org.spice-space.lowlevelusbaccess"> <description>Low level USB device access</description> <message>Privileges are required for low level USB device access (for usb device pass through).</message> <defaults> <allow_inactive>no</allow_inactive> <allow_active>auth_admin_keep</allow_active> </defaults> </action>
</policyconfig> _______________________________________________ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
-- David Jaša, RHCE SPICE QE based in Brno GPG Key: 22C33E24 Fingerprint: 513A 060B D1B4 2A72 7F0D 0278 B125 CD00 22C3 3E24
On Wed, Feb 27, 2013 at 2:42 PM, David Jaša wrote:
Currently on my fedora 17 client the file contains what below; how is it supposed to be changed?
To allow redirection without any prompts to user that is currently logged in to local session.
You wouldn't believe it, but I thought the same ... ;-) The file I posted was my default one and right now I'm requested the root password with it in place I would like to know which values to modify to bypass root password asking..
participants (2)
-
David Jaša -
Gianluca Cecchi