Ask Your Question
0

is it possible that security group rules are modified by group admins only?

asked 2013-09-30 09:45:59 -0500

Izhar gravatar image

I would like only group admins to allow modifying the security group and their rules. Right now every member can edit/delete secgroup rules which could be troublesome. I was wondering if this was possible?

/izhar

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted
1

answered 2015-10-12 02:04:56 -0500

OpenStack authorization policies can be controlled by policy.json. Each component will have their own policy.json file in /etc/<component_name>/policy.json. In that json, each & every distinct action is mapped to a RBAC rule.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

2 followers

Stats

Asked: 2013-09-30 09:45:59 -0500

Seen: 109 times

Last updated: Oct 12 '15