WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Xen-users] Access control for the xm command

from [Martti Kuparinen] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] Access control for the xm command
From: Martti Kuparinen <martti.kuparinen@xxxxxx>
Date: Tue, 31 Mar 2009 19:55:30 +0300
Delivery-date: Tue, 31 Mar 2009 09:56:12 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.21 (X11/20090319) 
Hi,

Say I have these domUs and their administrators on my dom0:

guest   admin(s)
-----   --------
vm1     user1, user3
vm2     user2, user3
vm3     user3
Each administrator should be able to do whatever he wants to do with the xm command on the domU he's maintaining but he should not be able to perform any xm actions on domUs where he's not supposed to have access to. So instead of giving general access for "sudo xm ..." I need something more fine grained.
Instead of writing my own script to check user's access to the given domU, is there any nice wrapper script for xm which already does this kind of access control checks? I hate reinventing the wheel again...
My dom0 is Debian 5.0 with self-compiled Xen 3.3.1 and libvirtd 0.6.1 if that makes any difference... 

Martti

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Forwarding USB-Modem into guest? Impossible?, Ken Cobler
Next by Date:  Re: [Xen-users] Access control for the xm command, Keith Coleman
Previous by Thread:  [Xen-users] Forwarding USB-Modem into guest? Impossible?, Martin Fernau
Next by Thread:  Re: [Xen-users] Access control for the xm command, Keith Coleman
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy