On Mon, Oct 19, 2009 at 01:20:52PM -0400, Chris Kelly wrote:
I upgraded from 1.x to 2.0.1 and the cobbler cli user no longer
works.
example:
[root@admin1 ~]# cobbler system add --name=foobar
cobbler.cexceptions.CX:'user <DIRECT> does not have access to
resource: xedit_system'
[root@admin1 ~]#
I'm experiencing the same problem, noting that you also use LDAP for
authentication.
I created a fresh installation of cobbler 2 on a fresh CentOS 5.4 server,
and it seems to be related to the authz_* modules.
Changing this:
# /etc/cobbler/modules.conf
# ...
[authorization]
module = authz_allowall
to the authz_configfile module causes the error you describe, but changing
it to authz_ownership does not.
At this point, I noticed that authz_configfile is no longer listed in
cobbler's default modules.conf file; perhaps it's deprecated?
In any case, I applied the attached patch to make it work for me; it may
also work for you.
You could probably also switch to authz_ownership, as that appears to work
too (but I wanted stricter control and didn't need ownership-related
controls, since I'm the only one who manages cobbler).
Regards, Msquared...