similar to: spice session locking

Hi List, Is it possible to prevent other clients from stealing my libvirtd hosted spice session? This is a problem for me where multiple co-workers access the same guest over a qemu+ssh:// connection. Instead of simply disconnecting clients, I'd like libvirtd to deny the new client. I've been looking at polkit acl rules and the vnc sharePolicy attribute but so far no luck.

Any idea how to do this with virsh or hooks? Qemu seems to have a spice.set_ticket command, but calling this from virsh's 'qemu-monitor-command guest --hmp --cmd spice.set_ticket password' doesn't work. The password would somehow have to be reset once the client logs out. On Mon, Feb 16, 2015 at 11:50 AM, Michal Privoznik <mprivozn@redhat.com> wrote: > On 13.02.2015

On 13.02.2015 16:19, Jon Doe wrote: > Hi List, > > Is it possible to prevent other clients from stealing my libvirtd > hosted spice session? This is a problem for me where multiple > co-workers access the same guest over a qemu+ssh:// connection. > Instead of simply disconnecting clients, I'd like libvirtd to deny the > new client. > > I've been looking at

I'm working on some infrastructure which allows a remote password reset (with expiry) of a spice console running on a remote libvirtd/qemu-kvm. I currently have GSSAPI over tcp working and can set the password - but I can also do everything else - the default policy is still in place, and once authenticated, anything goes. I'm setting the password using a command like this: virsh

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

Hello, Does anyone have spice server for KVM Linux guests working with GSSAPI authentication? I've been trying for a while and I simply can't get it to work. I don't know what I'm doing wrong. I wouldn't be surprised if I've misunderstood something. I followed this guide: https://www.freeipa.org/page/Libvirt_with_VNC_Consoles Yes, the above is for VNC consoles. I just

Is TLS required for the usage of Spice with KVM/libvirtd? I've been through the virt-install manpage a few times now to no avail. What is wrong with my syntax here (seen below)? Thanks. ~]# virt-install --connect qemu:///system -n blahhost -r2048 --vcpus=4 --arch=x86_64 --video qxl --graphics spice,port=5931 --noautoconsole --os-type linux --accelerate --network=bridge:kickstart_br0 --hvm

Hi all, I want to use libvirtd and polkit to create simple access restricitions for incoming TLS connections. libvirtd.conf: > ... > auth_tls = "sasl" > access_drivers = [ "polkit" ] > ... > tls_no_verify_certificate = 1 SASL and TLS in combination is already working without any faults. After activating access_drivers, the setup breaks, cause the access is

Hi, I wanted just to ask an additional question to that: how then here in the polkit documentation you distinguish users?: Consider a local user berrange who has been granted permission to connect > to libvirt in full read-write mode. > 2018-04-12 11:01 GMT+03:00 Erik Skultety <eskultet@redhat.com>: > On Thu, Mar 22, 2018 at 08:17:15PM +0300, Anastasiya Ruzhanskaya wrote: >

Hi All, I am trying to implement the following use case. User sfrag is logged on the host via ssh. Running 'virsh list --all' should trigger PolKit authentication and present ALL domains suffixed with -SF I have used and adapted the example from: libvirt.org Git - libvirt.git/blob - examples/polkit/libvirt-acl.rules | | | | | | | | | | | libvirt.org Git - libvirt.git/blob -

On 07.02.2014 09:47, Minami Katsumata wrote: > Hi, > > I'm having problems with libvirt crashing after a couple hours when a > specific domain monitoring program is running. > > I have pasted below the following: > 1. libvirt version > 2. qemu-kvm version > 3. OS version > 4. Kernel version > 5. libvirt status post-crash > 6. libvirtd.log (info level dump

Am 2015-10-01 12:33, schrieb Fabio Fantoni: > Should be something like /var/log/xen/qemu-dm-marax.log oh ok: qemu-system-i386: -spice port=6000,tls-port=0,addr=0.0.0.0,password=test,agent-mouse=on: There is no option group 'spice' spice is not supported by this qemu build. qemu-system-i386: -spice port=6000,tls-port=0,addr=0.0.0.0,disable-ticketing,agent-mouse=on: There is no

I am trying to connect a KVM-QEMU VM to OVS-DPDK vhostuser port. But, I am encountering a few errors. Since I am very new to libvrt and Linux I am not able to sort them out. Any guidance in this regard would be a great help. These are my System Logs: Mar 28 18:03:04 dpdk-OptiPlex-5040 libvirtd.service: 1529: debug : virCommandRunAsync:2429 : About to run LIBVIRT_LOG_OUTPUTS=3:stderr

CentOS Errata and Security Advisory 2012:1284 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1284.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 7fbeb404ddebbc96d1d2752fc2b6d44517ec8f60aad8551270b166aa30cd407f spice-glib-0.11-11.el6_3.1.i686.rpm

CentOS Errata and Bugfix Advisory 2013:1159 Upstream details at : https://rhn.redhat.com/errata/RHBA-2013-1159.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 8d1079bab56eeedfe19cf4d835012f38a22f7069537facc0eb30054c4ec9c118 spice-glib-0.14-7.el6_4.1.i686.rpm

CentOS Errata and Security Advisory 2013:1273 Important Upstream details at : https://rhn.redhat.com/errata/RHSA-2013-1273.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: c7bc8814163e0390fbba942451f909fd2219a985e6d7d80e20406337df9f53d7 spice-glib-0.14-7.el6_4.3.i686.rpm

CentOS Errata and Bugfix Advisory 2014:0467 Upstream details at : https://rhn.redhat.com/errata/RHBA-2014-0467.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: dcf81b9b26c7938f26faa899c26b60111d1e68417df3d1a23dad39e503860b33 spice-glib-0.20-11.el6_5.1.i686.rpm

CentOS Errata and Security Advisory 2018:2732 Important Upstream details at : https://access.redhat.com/errata/RHSA-2018:2732 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 9b96c82fae6fe02637eed3dac468fc6c8b7873ebd6447780880691dd8e6fd44d spice-glib-0.26-8.el6_10.1.i686.rpm

CentOS Errata and Security Advisory 2020:0471 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2020:0471 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: c89a83ebbc2927db579984c7570fe55087dcaafeec5ce677ab22e3f757a71bec spice-glib-0.26-8.el6_10.2.i686.rpm

CentOS Errata and Bugfix Advisory 2017:0070 Upstream details at : https://rhn.redhat.com/errata/RHBA-2017-0070.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: 00f8b320bf53b12e6666d28aff3838a69a42d0605e8b9f3050faad3dfa095908 spice-glib-0.31-6.el7_3.2.i686.rpm