nova-rootwrap(1) - Linux man page
Name
nova-rootwrap - Cloud controller fabric
Root Wrapper For Nova
- Author
Date
2012-09-27
- Copyright
- OpenStack LLC
- Version
- 2012.1
- Manual section
- 1
- Manual group
- cloud computing
SYNOPSIS
- nova-rootwrap [options]
DESCRIPTION
- Filters which commands nova is allowed to run as another user.
To use this, you should set the following in nova.conf: rootwrap_config=/etc/nova/rootwrap.conf
You also need to let the nova user run nova-rootwrap as root in sudoers: nova ALL = (root) NOPASSWD: /usr/bin/nova-rootwrap /etc/nova/rootwrap.conf *
To make allowed commands node-specific, your packaging should only install {compute,network,volume}.filters respectively on compute, network and volume nodes (i.e. nova-api nodes should not have any of those files installed).
OPTIONS
- General options
FILES
- • /etc/nova/nova.conf
• /etc/nova/rootwrap.conf
• /etc/nova/rootwrap.d/
SEE ALSO
- • OpenStack Nova
• OpenStack Nova
BUGS
- • Nova is sourced in Launchpad so you can view current bugs at OpenStack Nova
Author
OpenStack
Copyright
2010-present, OpenStack, LLC