Project

General

Profile

Actions

Bug #5006

open

Permission Denied while attempting to create new host provisioned by vcenter.

Added by Brad DeMorrow almost 10 years ago. Updated over 3 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Compute resources - VMware
Target version:
-
Difficulty:
Triaged:
No
Fixed in Releases:
Found in Releases:

Description

While attempting to create a new host via vcenter, we were receiving a permission denied error - resulting in the Virtual Machine tab to not be populated. The production.log that is attached includes a full stack trace that indicates that it was due to the way that RbVmomi attempted to locate datacenter instances. Our organization requires us to use an account for foreman that does not have the privileges to traverse the entire inventory of objects provided by vcenter - we are limited to a small subset.

We managed to get things working with a very small patch, but it's likely that we're overlooking something. In particular, there are only two paths for the method that I'm patching, but we're only patching the path that is causing us issues. I'm not sure how to trigger the other pathway from within Foreman.


Files

production.log production.log 316 KB Brad DeMorrow, 04/01/2014 04:10 PM
ServiceInstance.rb.patch ServiceInstance.rb.patch 149 Bytes Initial Patch that allowed us to use foreman, likely not correct. Brad DeMorrow, 04/01/2014 05:00 PM

Related issues 1 (1 open0 closed)

Related to Foreman - Bug #4187: Cannot create VMware guest with selective permissionsNew01/26/2014Actions
Actions #1

Updated by Dominic Cleal almost 10 years ago

  • Related to Bug #4187: Cannot create VMware guest with selective permissions added
Actions #2

Updated by Dominic Cleal almost 10 years ago

Would you mind sending the patch to https://github.com/vmware/rbvmomi/? We don't manage the VMware library ourselves. Hopefully if it's in a later release we'll be able to use it in the future - though are currently pinned to 1.6.0 due to a nokogiri issue (#5018).

Actions #3

Updated by Dominic Cleal over 9 years ago

  • Category changed from Compute resources to Compute resources - VMware
Actions #4

Updated by Daniel Lobato Garcia about 6 years ago

  • Bugzilla link set to 1382486
Actions

Also available in: Atom PDF