Hi Eiji, > mysql> select * from cloud.account where id = 2; > +----+--------------+--------------------------------------+---- > --+-----------+---------+---------+----------------+-------------- > --+-----------------+---------+ > | id | account_name | uuid | type | > domain_id | state | removed | cleanup_needed | network_domain | > default_zone_id | default | > +----+--------------+--------------------------------------+---- > --+-----------+---------+---------+----------------+-------------- > --+-----------------+---------+ > | 2 | admin | 483d0fcf-da63-11e3-8ea9-24be05a86042 | 1 > | 1 | enabled | NULL | 0 | > NULL | NULL | 1 | > +----+--------------+--------------------------------------+---- > --+-----------+---------+---------+----------------+-------------- > --+-----------------+---------+ > 1 row in set (0.00 sec) > > > "type", "state" and "removed" seem to be good. > Should I check records in other tables?
Hmm... This looks good to me. Checking further... Do you have a commands.properties that has the correct mappings from role to API calls? This is the only other place I can find that could be relevant - according to: https://github.com/apache/cloudstack/blob/4.2/plugins/acl/static-role-based/src/org/apache/cloudstack/acl/StaticRoleBasedAPIAccessChecker.java Regards, Gregor