On Tue, Apr 05, 2011 at 03:58:39PM +0200, Ulrich Windl wrote: > >>> Dejan Muhamedagic <[email protected]> schrieb am 05.04.2011 um 13:44 in > Nachricht <[email protected]>: > > Hi, > > > > On Tue, Apr 05, 2011 at 08:25:21AM +0200, Ulrich Windl wrote: > > > >>> Dejan Muhamedagic <[email protected]> schrieb am 04.04.2011 um > > > >>> 14:51 in > > > Nachricht <20110404125103.GK3553@squib>: > > > > Hi, > > > > > > > > On Tue, Mar 22, 2011 at 06:39:08PM +0200, Pavlos Polianidis wrote: > > > > > Dear all, > > > > > > > > > > I am looking for a way to add/modify an op-option "op monitor > > > > on-fail="restart"" through a single command besides using the crm cli. > > > > I > > > > tried with crm_resource but no luck. I need the command to use it in a > > script > > > > as a non-root user, that's why I cannot use a command such as "crm > > configure > > > > .........". Is there a way to do that? > > > > > > > > A non-root user? Which one? Do you then use sudo in your script? > > > > If so, you can set the "user" option in crm (see "crm options > > > > help user"). Now, it's going to be tricky to do what you want > > > > from a script. Take a look here > > > > http://marc.info/?l=linux-ha&m=130148966631607&w=2 > > > > > > Hi! > > > > > > Once again: HP Serviceguard has three roles for users to delegate some > > tasks: > > > MONITOR: read-only capabilities for the cluster > > > PACKAGE_ADMIN: MONITOR, plus administrative commands for packages > > (=resource groups) > > > FULL_ADMIN: MONITOR and PACKAGE_ADMIN plus the administrative commands > > > for > > the cluster. > > > > > > I think it would make sense to be able to allow users to disable/enable > > some resources. That might be even more secure than the sudo approach. > > > > There is a very elaborate ACL support since Pacemaker 1.1.5. > > > > BTW, why do we talk about HP Serviceguard? I mean, I don't really > > mind learning how other products work, but this ML is for > > Pacemaker and related software packages. > > Well, > > I did not do any advertising for it, nor did I ask or propose any > configuration details. But this list should be open enough to allow a "glance > outside" now and then.
Obviously it is, since this is not the first time you were writing about Serviceguard. This happening repeatedly is what made me react. Nothing really against it, if the information is relevant to the topic. Thanks, Dejan > Ulrich > > > _______________________________________________ > Linux-HA mailing list > [email protected] > http://lists.linux-ha.org/mailman/listinfo/linux-ha > See also: http://linux-ha.org/ReportingProblems _______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
