Hello, i'm running OpenNebula 4.0.1, freshly installed, and I'd like to implement the following use-case ACL-wise: when users login through the sunstone interface, they should see if other VMs are currently running and on which hosts. Clearly, on VMs owned by other users (even if in the same group), no managing actions should be allowed.
This is the current set of ACL rules installed ( i believe these are the default ones): ID USER RES_VHNIUTGDCO RID OPE_UMAC 0 @1 V-NI-T---- * ---c 11 @1 -H-------- * um-- 16 * ---------O * ---c If I add this: "@1 VM/* USE" , all users can see all other users' VMs but all actions seem to be available (at least through the web interface). Is this scenario supported somehow? Thanks, Valerio
_______________________________________________ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org