And also I heard that there is support of a SElinux driver.. 2018-05-07 12:41 GMT+03:00 Anastasiya Ruzhanskaya < anastasiya.ruzhansk...@frtk.ru>:
> Hi, I wanted just to ask an additional question to that: > how then here in the polkit documentation you distinguish users?: > > Consider a local user berrange who has been granted permission to connect >> to libvirt in full read-write mode. >> > > 2018-04-12 11:01 GMT+03:00 Erik Skultety <eskul...@redhat.com>: > >> On Thu, Mar 22, 2018 at 08:17:15PM +0300, Anastasiya Ruzhanskaya wrote: >> > Hello everyone, >> > I have a question about logging. I need to find out whether it is >> possible >> > to see user id/session id inside logs or somewhere else. It is not >> passed >> > in structured across the network, so where should I look to find out, >> which >> > user (which session) is currently performing the actions? >> >> Hi, >> sorry for a late answer. As per logging (debug logs to be more precise), >> libvirt >> doesn't log the user/client id which performed the action. Sadly, there's >> currently no way to find out which client is responsible for which >> actions. >> The only thing you can gather from libvirtd is the info about the >> connected >> clients not the actions they perform, you can get this info using >> virt-admin >> (needs to be run as root) >> >> # virt-admin client-list libvirtd >> Id Transport Connected since >> -------------------------------------------------- >> 1 unix 2018-04-12 09:53:46+0200 >> >> # virt-admin client-info --server libvirtd --client 1 >> id : 1 >> connection_time: 2018-04-12 09:53:46+0200 >> transport : unix >> readonly : no >> unix_user_id : 1000 >> unix_user_name : eskultet >> unix_group_id : 1001 >> unix_group_name: eskultet >> unix_process_id: 19053 >> selinux_context: unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 >> >> Regards, >> Erik >> > >
_______________________________________________ libvirt-users mailing list libvirt-users@redhat.com https://www.redhat.com/mailman/listinfo/libvirt-users