Hello Borislav, The network you are connecting to, oam_onap_6Gve, is owned by the VIM user. The network is shared, and is setup for DHCP to use the full range. Therefore your tenant ID can connect to the network and receive a DHCP address. However you will not be able to create a port with a fixed IP in the VIM user's network.
How are others implementing this use case? Br, - Stephen From: Borislav Glozman [mailto:[email protected]] Sent: Wednesday, January 17, 2018 18:44 To: Gooch, Stephen Cc: onap-discuss Subject: [onap-discuss] [openlab] Insufficient permissions to run vFW demo in OpenLab Hello Stephen, I am failing to run vFWCL demo in OpenLab. The failure is during creation of a port with a fixed IP address. Could you please help me resolve this? I tried doing that with user BorislavG in OOM tenant. This is the url for the stack: http://10.12.25.2/project/stacks/stack/343ae95c-c9d9-44e1-9dff-a58430745c57/ vsn_private_1_port<http://10.12.25.2/project/stacks/stack/343ae95c-c9d9-44e1-9dff-a58430745c57/vsn_private_1_port/> OS::Neutron::Port 10 minutes Create Failed Forbidden: resources.vsn_private_1_port: (rule:create_port and rule:create_port:fixed_ips) on {'binding:host_id': <neutron_lib.constants.Sentinel object at 0x2f6f150>, u'name': u'vFW_SINC_Module1-vsn_private_1_port-b4vullkofpnz', 'allowed_address_pairs': <neutron_lib.constants.Sentinel object at 0x2f6f150>, u'admin_state_up': True, u'network_id': u'1969d338-7feb-48ce-aae3-6a6ac5aa5eba', 'tenant_id': u'dbe658c72ee7426fa979e319fd8cacc7', 'extra_dhcp_opts': None, 'description': '', 'wrs-binding:vif_model': <neutron_lib.constants.Sentinel object at 0x2f6f150>, 'binding:vnic_type': 'normal', 'device_owner': '', 'device_id': '', 'mac_address': <neutron_lib.constants.Sentinel object at 0x2f6f150>, 'binding:profile': <neutron_lib.constants.Sentinel object at 0x2f6f150>, 'project_id': u'dbe658c72ee7426fa979e319fd8cacc7', u'fixed_ips': [{u'subnet_id': u'89cf097b-48bd-4356-9d67-60b88b75f378', u'ip_address': u'10.0.100.4'}], 'network:tenant_id': u'0e148b76ee8c42f78d37013bf6b7b1ae', 'security_groups': <neutron_lib.constants.Sentinel object at 0x2f6f150>, 'wrs-tm:qos': None} by {'domain': None, 'project_name': u'OOM', 'tenant_name': u'OOM', 'project_domain': None, 'timestamp': '2018-01-17 17:29:25.356700', 'auth_token': 'f58ed02c80b04e9dbb4a995d786aaea7', 'resource_uuid': None, 'is_admin': False, 'user': u'a7633ceb2b13453fba71670272f8b788', 'tenant': u'dbe658c72ee7426fa979e319fd8cacc7', 'read_only': False, 'project_id': u'dbe658c72ee7426fa979e319fd8cacc7', 'user_id': u'a7633ceb2b13453fba71670272f8b788', 'show_deleted': False, 'roles': [u'_member_'], 'user_identity': u'a7633ceb2b13453fba71670272f8b788 dbe658c72ee7426fa979e319fd8cacc7 - - -', 'tenant_id': u'dbe658c72ee7426fa979e319fd8cacc7', 'is_admin_project': True, 'request_id': 'req-013a6d96-c6d1-4bc2-aa99-1688c025f4cf', 'user_domain': None, 'user_name': u'BorislavG'} disallowed by policy Neutron server returns request_ids: ['req-013a6d96-c6d1-4bc2-aa99-1688c025f4cf'] Thanks, Borislav Glozman O:+972.9.776.1988 M:+972.52.2835726 This message and the information contained herein is proprietary and confidential and subject to the Amdocs policy statement, you may review at https://www.amdocs.com/about/email-disclaimer
_______________________________________________ onap-discuss mailing list [email protected] https://lists.onap.org/mailman/listinfo/onap-discuss
