Bug #5006

Permission Denied while attempting to create new host provisioned by vcenter.

Added by Brad DeMorrow about 4 years ago. Updated 3 months ago.

Assigned To:-
Category:Compute resources - VMware
Target version:-
Difficulty: Bugzilla link:1382486
Found in release:1.4.2 Pull request:
Story points-
Velocity based estimate-


While attempting to create a new host via vcenter, we were receiving a permission denied error - resulting in the Virtual Machine tab to not be populated. The production.log that is attached includes a full stack trace that indicates that it was due to the way that RbVmomi attempted to locate datacenter instances. Our organization requires us to use an account for foreman that does not have the privileges to traverse the entire inventory of objects provided by vcenter - we are limited to a small subset.

We managed to get things working with a very small patch, but it's likely that we're overlooking something. In particular, there are only two paths for the method that I'm patching, but we're only patching the path that is causing us issues. I'm not sure how to trigger the other pathway from within Foreman.

production.log (316 KB) Brad DeMorrow, 04/01/2014 04:10 PM

ServiceInstance.rb.patch Magnifier - Initial Patch that allowed us to use foreman, likely not correct. (149 Bytes) Brad DeMorrow, 04/01/2014 05:00 PM

Related issues

Related to Foreman - Bug #4187: Cannot create VMware guest with selective permissions New 01/26/2014


#1 Updated by Dominic Cleal about 4 years ago

  • Related to Bug #4187: Cannot create VMware guest with selective permissions added

#2 Updated by Dominic Cleal about 4 years ago

Would you mind sending the patch to https://github.com/vmware/rbvmomi/? We don't manage the VMware library ourselves. Hopefully if it's in a later release we'll be able to use it in the future - though are currently pinned to 1.6.0 due to a nokogiri issue (#5018).

#3 Updated by Dominic Cleal over 3 years ago

  • Category changed from Compute resources to Compute resources - VMware

#4 Updated by Daniel Lobato Garcia 3 months ago

  • Bugzilla link set to 1382486

Also available in: Atom PDF