Ask Your Question

is it possible that security group rules are modified by group admins only?

asked 2013-09-30 09:45:59 -0500

Izhar gravatar image

I would like only group admins to allow modifying the security group and their rules. Right now every member can edit/delete secgroup rules which could be troublesome. I was wondering if this was possible?


edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted

answered 2015-10-12 02:04:56 -0500

OpenStack authorization policies can be controlled by policy.json. Each component will have their own policy.json file in /etc/<component_name>/policy.json. In that json, each & every distinct action is mapped to a RBAC rule.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools



Asked: 2013-09-30 09:45:59 -0500

Seen: 143 times

Last updated: Oct 12 '15