Displaying 2 results from an estimated 2 matches for "access_driv".
2016 Jan 04
2
libvirtd and polkit: internal error: No Unix Process ID
Hi all,
I want to use libvirtd and polkit to create simple access restricitions for
incoming TLS connections.
libvirtd.conf:
> ...
> auth_tls = "sasl"
> access_drivers = [ "polkit" ]
> ...
>
tls_no_verify_certificate = 1
SASL and TLS in combination is already working without any faults. After
activating access_drivers, the setup breaks, cause the access is denied.
without polkit:
> [root at inexor-test ~]# virsh --connect qemu+tls://vm0.ho...
2020 Apr 08
0
PolKit rule and API matchaccess_drivers = [ "polkit" ]
...-acl.rules
|
|
|
Adapted the setup so that I included user sfrag.
Always the user was asked to authenticate via root and not via SELF but ONLY if running "virsh -c qemu:///system list --all"
Had to change /etc/libvirt/libvirtd.conf to include:
auth_unix_ro = "polkit"access_drivers = [ "polkit" ]log_filters="1:access.accessdriverpolkit"log_outputs="1:file:/var/log/libvirt/libvirtd.log"
All polkit rules for user sfrag was removed at this point.
Now the user sfrag running 'virsh list --all' gives no output to /var/log/libvirt/libvirtd...