[libvirt] Accessing libvirtd remotely as non-root user
Dan Mossor
danofsatx at gmail.com
Fri Jun 12 13:06:25 UTC 2015
On 06/12/2015 03:48 AM, Daniel P. Berrange wrote:
> On Thu, Jun 11, 2015 at 05:26:20PM -0500, Dan Mossor wrote:
>> I manage libvirtd on a few remote machines, and my security policies require
>> me to disable root login via SSH. Up to this point, I've been using root due
>> to the systems being in staging, but this is the final step before they're
>> moved to production.
>>
>> What is the current proscribed method of connecting virt-manager or virsh to
>> a remote system with a non-root account? I keep getting "authentication
>> failed: no agent is available to authenticate" with a user that is in the
>> kvm and qemu groups on the systems I've tried using the ssh transport.
>
> This guide ought to help you set it up
>
> http://wiki.libvirt.org/page/SSHPolicyKitSetup
>
> Regards,
> Daniel
>
Hmmm... I've created the polkit rule as stated in [1], but I still
received the "no agent is available to authenticate" error. Do I need to
restart anything to pick it up?
Dan
[1]https://goldmann.pl/blog/2012/12/03/configuring-polkit-in-fedora-18-to-access-virt-manager/
--
Dan Mossor, RHCSA
Systems Engineer
Fedora Server WG | Fedora KDE WG | Fedora QA Team
Fedora Infrastructure Apprentice
FAS: dmossor IRC: danofsatx
San Antonio, Texas, USA
More information about the libvir-list
mailing list