Ask Your Question
0

is it possible that security group rules are modified by group admins only?

asked 2013-09-30 09:45:59 -0500

Izhar gravatar image

I would like only group admins to allow modifying the security group and their rules. Right now every member can edit/delete secgroup rules which could be troublesome. I was wondering if this was possible?

/izhar

edit retag flag offensive close merge delete
add a comment

1 answer

Sort by ยป oldest newest most voted
1

answered 2015-10-12 02:04:56 -0500

jayaprakash gravatar image

OpenStack authorization policies can be controlled by policy.json. Each component will have their own policy.json file in /etc/<component_name>/policy.json. In that json, each & every distinct action is mapped to a RBAC rule.

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

2 followers

subscribe to rss feed

Stats

Asked: 2013-09-30 09:45:59 -0500

Seen: 117 times

Last updated: Oct 12 '15

Related questions

How to setup security groups for IPv6 with nova-network?

Security rules not being applied

Can user create duplicated security groups?

Make Openstack instance a router

How do we contribute to OpenStack?

neutron - default security group per tenant

RDO packstack: qbr missing with LibvirtGenericVIFDriver

Python-neutron client

Change security group

Configuring dm-crypt inside host?