[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] Access control for the xm command

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Martti Kuparinen <martti.kuparinen@xxxxxx>
Date: Tue, 31 Mar 2009 19:55:30 +0300
Delivery-date: Tue, 31 Mar 2009 09:56:12 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>

Hi,

Say I have these domUs and their administrators on my dom0:

guest   admin(s)
-----   --------
vm1     user1, user3
vm2     user2, user3
vm3     user3

Each administrator should be able to do whatever he wants to do with thexm command on the domU he's maintaining but he should not be able toperform any xm actions on domUs where he's not supposed to have accessto. So instead of giving general access for "sudo xm ..." I needsomething more fine grained.

Instead of writing my own script to check user's access to the givendomU, is there any nice wrapper script for xm which already does thiskind of access control checks? I hate reinventing the wheel again...

My dom0 is Debian 5.0 with self-compiled Xen 3.3.1 and libvirtd 0.6.1 ifthat makes any difference...


Martti

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- Re: [Xen-users] Access control for the xm command
  - From: Keith Coleman

Prev by Date: Re: [Xen-users] Forwarding USB-Modem into guest? Impossible?
Next by Date: Re: [Xen-users] Access control for the xm command
Previous by thread: [Xen-users] Forwarding USB-Modem into guest? Impossible?
Next by thread: Re: [Xen-users] Access control for the xm command
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.