Perhaps the ACL feature can meet your needs. You didn't mention if you were trying to secure the webui or the cli, however I think you can use some type of ACL for both. The wiki seems pretty outdated on this subject and in fact still states that the ACL feature is in development for the 1.3 release. A google search did reveal that some people may be using it though.
You can start here: https://fedorahosted.org/cobbler/wiki/CustomizableAuthorization Then this before moving on to ACLs: https://fedorahosted.org/cobbler/wiki/AuthorizationWithOwnership Webui ACL feature: https://fedorahosted.org/cobbler/wiki/AclFeature For ACLs in the cli: https://fedorahosted.org/cobbler/wiki/AclSetup I'd be curious to hear about your experience and results in this area. I'll need to implement this type of security in the near future myself. HTH byron -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Alex L. Sent: Wednesday, August 25, 2010 8:15 AM To: [email protected] Subject: cobbler authorization: how to setup different permission levels ? Hi all, I would like setup cobbler to separate the users in two different groups with different permissions: Group 1: admin group which is allowed to deal with every cobbler objects (like creation/modification/removal of distro,profile,system, etc.) Group 2: non-admin group which is allowed to deal only with the system objects (means: creation/modification/removal of systems) I already went through the available doc's from the cobbler wiki, but can not figure out how to solve this, especially to delegate the creation of new systems to this non-admin group. Any ideas ? Thanks in advance, kind regards, Alex. _______________________________________________ cobbler mailing list [email protected] https://fedorahosted.org/mailman/listinfo/cobbler _______________________________________________ cobbler mailing list [email protected] https://fedorahosted.org/mailman/listinfo/cobbler
