Re: [Bacula-users] Bacula ACL
Hi Josip, Spot on ... thanks ! Will try it very soon. -Yateen -Original Message- From: Josip Deanovic Sent: Wednesday, January 12, 2022 1:48 PM To: bacula-users@lists.sourceforge.net Subject: Re: [Bacula-users] Bacula ACL On 2022-01-12 06:28, Shaligram Bhagat, Yateen (Nokia - IN/Bangalore) wrote: > Hi All, > > We have backup being taken for filesets of different users (users > co-located on a single Linux host as well as individual user with > his/her private Linux host) > > At the moment any user can restore other user's data through > bconsole/BAT How can we put some kind of ACL's to ensure that a given > user has restore access only to his/her fileset? > > We have Bacula 9.4.4 on Centos. Hi Shaligram, You could add separate Console resources to your bacula-dir.conf and configure them with different passwords (and SSL/TLS if you are using transport encryption). You could then define which Console is allowed to access which file daemon, file set etc. Here is the relevant documentation page for your version (9.4.x): https://www.bacula.org/9.4.x-manuals/en/main/Configuring_Director.html#SECTION002019 Regards! -- Josip Deanovic ___ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users ___ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
Re: [Bacula-users] Bacula ACL
On 2022-01-12 06:28, Shaligram Bhagat, Yateen (Nokia - IN/Bangalore) wrote: Hi All, We have backup being taken for filesets of different users (users co-located on a single Linux host as well as individual user with his/her private Linux host) At the moment any user can restore other user's data through bconsole/BAT How can we put some kind of ACL's to ensure that a given user has restore access only to his/her fileset? We have Bacula 9.4.4 on Centos. Hi Shaligram, You could add separate Console resources to your bacula-dir.conf and configure them with different passwords (and SSL/TLS if you are using transport encryption). You could then define which Console is allowed to access which file daemon, file set etc. Here is the relevant documentation page for your version (9.4.x): https://www.bacula.org/9.4.x-manuals/en/main/Configuring_Director.html#SECTION002019 Regards! -- Josip Deanovic ___ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
[Bacula-users] Bacula ACL
Hi All, We have backup being taken for filesets of different users (users co-located on a single Linux host as well as individual user with his/her private Linux host) At the moment any user can restore other user's data through bconsole/BAT How can we put some kind of ACL's to ensure that a given user has restore access only to his/her fileset? We have Bacula 9.4.4 on Centos. Thanks, Yateen Bhagat ___ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
