Ask Your Question
0

is it possible that security group rules are modified by group admins only?

asked 2013-09-30 09:45:59 -0500

Izhar gravatar image

I would like only group admins to allow modifying the security group and their rules. Right now every member can edit/delete secgroup rules which could be troublesome. I was wondering if this was possible?

/izhar

edit retag flag offensive close merge delete
add a comment

1 answer

Sort by ยป oldest newest most voted
1

answered 2015-10-12 02:04:56 -0500

jayaprakash gravatar image

OpenStack authorization policies can be controlled by policy.json. Each component will have their own policy.json file in /etc/<component_name>/policy.json. In that json, each & every distinct action is mapped to a RBAC rule.

edit flag offensive delete link more
add a comment

Get to know Ask OpenStack

Resources for moderators

Question Tools

2 followers

subscribe to rss feed

Stats

Asked: 2013-09-30 09:45:59 -0500

Seen: 143 times

Last updated: Oct 12 '15

Related questions

security group not working - nova networking FlatDHCP - vSphere

Is there any example for http://169.254.169.254/2009-04-04/meta-data/security-groups" ?

Unable to Retrieve Security Groups Havana [closed]

How do you configure a security group with nova.servers.create?

Add security rules failed due to multiple security groups named with "default"

Server action: add and remove Security Group (compute v2.0 API)

heat security group id

How to add ICMP and ssh rules in the default security?

Security rules not being applied

What command to see which security group appplies to a network?