[Pacemaker] ACL setup

Larry Brigman larry.brigman at gmail.com
Fri Dec 9 23:15:36 CET 2011


I have installed pacemaker 1.1.5 and configure ACLs based on the info from
http://www.clusterlabs.org/doc/acls.html

It looks like the user still does not have read access.

Here is the acl section of config
    <acls>
      <acl_role id="monitor">
        <read id="monitor-read" xpath="/cib"/>
      </acl_role>
      <acl_user id="nvs">
        <role_ref id="monitor"/>
      </acl_user>
      <acl_user id="acm">
        <role_ref id="monitor"/>
      </acl_user>
    </acls>

Here is what the user is getting:
[nvs at sweng0057 ~]$ crm node show
Signon to CIB failed: connection failed
Init failed, could not perform requested operations
ERROR: cannot parse xml: no element found: line 1, column 0
[nvs at sweng0057 ~]$ crm status

Connection to cluster failed: connection failed


Any ideas as to why this wouldn't work and what to fix?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://oss.clusterlabs.org/pipermail/pacemaker/attachments/20111209/bd45e82d/attachment.html>


More information about the Pacemaker mailing list