Quota and User Management - Getting Started with Red Hat Enterprise Virtualization

Information Technology Reference

In-Depth Information

An overview of user management

As an administrator, you have created several running virtual machines, and you can assign

users to access the machines from the user portal. RHEV supports two types of user ac-

counts: one is the admin account, which resides in the internal domain created during the

RHEV-M installation, and other users are managed by integrating the manager with extern-

al directory services such as openLDAP, active directory services, and more for user au-

thentication.

Except the internal admin account, the rest of the user accounts must be created in external

directory servers, and these users are called directory users. Once the manager is attached

to any of the supported directory servers, the users who reside in the directory servers can

be added to the manager administration portal, thus making them RHEV-M users.

Using this multilevel administration feature of RHEV, we can customize permissions for

each logical component, such as virtual machines, clusters, data centers, and more, to the

RHEV-M users added to the administration portal from the directory servers.

There are two types of RHEV-M users: one is the end user who can access the virtual re-

sources from the user or power user portal, and other is the administrative user who can

manage and maintain the virtualization infrastructure using the admin portal. Users can be

assigned different roles and permissions. For instance, in order to access a virtual machine

from the user portal, a user must have either user role or power user role permissions for

the virtual machine. These permissions are added from the manager administration portal.

So, user roles and admin roles can be assigned to RHEV-M users in order to access indi-

vidual resources such as virtual machines or hosts and to complete objects such as clusters

or data centers.

Before diving into user roles and permission, we need to add users to RHEV-M, and to do

this, you will need to attach a directory server to the manager using the domain manage-

ment tool, called engine-manage-domains, installed as a part of the RHEV-M installation.

The directory servers supported for use with Red Hat Enterprise Virtualization 3.3 are the

following:

• Active directory

• Identity Management

• Red Hat Directory Server 9

• OpenLDAP

Search WWH ::

Custom Search

Home