***: heavysixer has quit IRC ()
heavysixer has joined #arpnetworks
vtoms has joined #arpnetworks
vtoms has quit IRC ("Leaving.")
vtoms has joined #arpnetworks
vtoms has quit IRC (Remote closed the connection)
vtoms has joined #arpnetworks
vtoms has quit IRC (Client Quit)
vtoms has joined #arpnetworks
vtoms has quit IRC (Client Quit) up_the_irons: toddf: got a test conserver setup going, worked slick as sh*t and I can access serial console of a remote VM; next step: making user X only see user X's VMs in the available consoles list; right now it just shows them all ***: vtoms has joined #arpnetworks toddf: sweetness; I presume 'group clienta { users clientauser; }' 'group clientb { users clientbuser; }' 'console vm0 { include server1serial; port 1; rw clienta; }' 'console vm1 { include server1serial; port 2; rw clientb; }' did not do this?
oh
you can also use '-C' on the cmdline that might restrict what is available in the list if it is listing only what that user needs
I should test and let you know what works to shave you time though ;-)
nope that doesn't work as expected (the -C option to console)
'limited' looks to have potential in conserver.cf up_the_irons: toddf: 'limited' works to restrict some more "I obviously wouldn't want people to do this" commands
toddf: and I have that working; nevertheless though, even with groups, a simple 'console -u -l clientusera' will list all consoles, even if clientusera does not have 'ro' or 'rw' access to that console
maybe i'm missing something toddf: I'm looking, I presumed it would be able to limit that, hopefully I didn't nievely presume that up_the_irons: toddf: i would *think* that'd be possible, but who knows; even if it doesn't, a could polish up my C skills and see if I could add that in toddf: ;-) up_the_irons: :) jeev: hrmf toddf: an email in 2001 suggested 'user:*:console1,console2,console3' should work but I'm not seeing that behavior
hmm
even 'ro "";' still shows up in 'x' up_the_irons: yup, that's what i'm finding toddf: bryan@conserver.com wrote an email on mar 9 2006 saying "you could se their shell to a script htat execed 'console <router>' and put them in the "restricted user" list inside conserver...that way they'd be "locked" onto the console and unable to do some of the more advanced commands
I am unable to find any reference to 'restricted user' however ;-( ***: vtoms has quit IRC ("Leaving.") toddf: I finally gave up and sent a generic request to users@conserver.com up_the_irons: toddf: haha, cool thanks for that
just bought me some of these: http://www.newegg.com/Product/Product.aspx?Item=N82E16820609453 ***: heavysixer has quit IRC ()
heavysixer has joined #arpnetworks
heavysixer has quit IRC ()
heavysixer has joined #arpnetworks jeev: http://www.youtube.com/watch?v=eOEziy-h_m0 ***: heavysixer has quit IRC ()