[fedora-virt] virt-manager and ssh with non root user

Gianluca Cecchi gianluca.cecchi at gmail.com
Tue Oct 20 15:26:24 UTC 2009 

Hello,
using F11 + rawvirt repo.
I would like to connect from my virt-manager from this F11 to a RH EL 5.4
xen Hypervisor. Is it possible?
On the RH EL host, root access via ssh is prevented and I don't want to use
a CA certficate at the moment.
Also I cannot export DISPLAY env so I cannot directly ssh to the host and
run its virt-manager program....

I tried to edit /etc/libvirtd/libvirtd.conf on rh el 5.4 host adding
unix_sock_group = "mygroup"

and then trying to connect with one user of this group. Is this setting
correct as I intended it?

When in virt-manager of F11 I try to create new connection, it seems I'm
only able to create a session of type

xen+ssh://root@myrhel54host/

and not of type
xen+ssh://myuser@myrhel54host

Any hints?
Also, as in virt-manager this connection fails to create (root prevented
from ssh directly as said above), I would like to delete it... but I didn't
find an option for this;
In virt-manager only "connect" and "details" options are available....

these are messages in virsh session when setting LIBVIRT_DEBUG=1

virsh # connect xen+ssh://unix@myrhel54host
17:23:44.911: debug : virConnectClose:1291 : conn=0x65de70
17:23:44.911: debug : virUnrefConnect:257 : unref connection 0x65de70 1
17:23:44.911: debug : remoteIO:7421 : Do proc=2 serial=3 length=28
wait=(nil)
17:23:44.911: debug : remoteIO:7483 : We have the buck 2 0x67db20 0x67db20
17:23:44.912: debug : remoteIODecodeMessageLength:7032 : Got length, now
need 56 total (52 more)
17:23:44.912: debug : remoteIOEventLoop:7347 : Giving up the buck 2 0x67db20
(nil)
17:23:44.912: debug : remoteIO:7514 : All done with our call 2 (nil)
0x67db20
17:23:44.912: debug : virReleaseConnect:214 : release connection 0x65de70
17:23:44.912: debug : virConnectOpenAuth:1273 :
name=xen+ssh://unix@myrhel54host, auth=0x7fb212bc40a0, flags=0
17:23:44.912: debug : do_open:1042 : name "xen+ssh://unix@myrhel54host" to
URI components:
  scheme xen+ssh
  opaque (null)
  authority (null)
  server myrhel54host
  user unix
  port 0
  path (null)

17:23:44.912: debug : do_open:1052 : trying driver 0 (Test) ...
17:23:44.912: debug : do_open:1058 : driver 0 Test returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 1 (Xen) ...
17:23:44.912: debug : do_open:1058 : driver 1 Xen returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 2 (OPENVZ) ...
17:23:44.912: debug : do_open:1058 : driver 2 OPENVZ returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 3 (PHYP) ...
17:23:44.912: debug : do_open:1058 : driver 3 PHYP returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 4 (VBOX) ...
17:23:44.912: debug : do_open:1058 : driver 4 VBOX returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 5 (ESX) ...
17:23:44.912: debug : do_open:1058 : driver 5 ESX returned DECLINED
17:23:44.912: debug : do_open:1052 : trying driver 6 (remote) ...
17:23:44.912: debug : doRemoteOpen:535 : proceeding with name = xen://
17:23:44.912: debug : virExecWithHook:609 : ssh -l unix myrhel54host nc -U
/var/run/libvirt/libvirt-sock
17:23:44.917: debug : remoteIO:7421 : Do proc=66 serial=0 length=28
wait=(nil)
17:23:44.918: debug : remoteIO:7483 : We have the buck 66 0x6bde80 0x6bde80
17:23:44.924: debug : remoteIOEventLoop:7368 : Giving up the buck due to I/O
error 66 0x6bde80 (nil)
17:23:44.924: debug : do_open:1058 : driver 6 remote returned ERROR
17:23:44.924: debug : virUnrefConnect:257 : unref connection 0x65e260 1
17:23:44.924: debug : virReleaseConnect:214 : release connection 0x65e260
error: Failed to connect to the hypervisor
error: cannot recv data: Connection reset by peer


Thanks,
Gianluca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-virt/attachments/20091020/6db4bb17/attachment.htm>

More information about the Fedora-virt mailing list