Bug #5006
open
Permission Denied while attempting to create new host provisioned by vcenter.
Description
While attempting to create a new host via vcenter, we were receiving a permission denied error - resulting in the Virtual Machine tab to not be populated. The production.log that is attached includes a full stack trace that indicates that it was due to the way that RbVmomi attempted to locate datacenter instances. Our organization requires us to use an account for foreman that does not have the privileges to traverse the entire inventory of objects provided by vcenter - we are limited to a small subset.
We managed to get things working with a very small patch, but it's likely that we're overlooking something. In particular, there are only two paths for the method that I'm patching, but we're only patching the path that is causing us issues. I'm not sure how to trigger the other pathway from within Foreman.
Files
Updated by Dominic Cleal over 10 years ago
- Related to Bug #4187: Cannot create VMware guest with selective permissions added
Updated by Dominic Cleal over 10 years ago
Would you mind sending the patch to https://github.com/vmware/rbvmomi/? We don't manage the VMware library ourselves. Hopefully if it's in a later release we'll be able to use it in the future - though are currently pinned to 1.6.0 due to a nokogiri issue (#5018).
Updated by Dominic Cleal about 10 years ago
- Category changed from Compute resources to Compute resources - VMware
Updated by