[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HTCondor-users] Give access to admin commands to non-root user

Date: Wed, 2 Nov 2022 14:24:12 -0500 (CDT)
From: Todd L Miller <tlmiller@xxxxxxxxxxx>
Subject: Re: [HTCondor-users] Give access to admin commands to non-root user

I want to give access to the queue commands (such as condor_rm) to sometrusted users. I am using FS authentication, I have them listed asadmins, and also in the QUEUE_SUPER_USER, but they are still unable torun condor_rm. Here is what my config looks like, I can't find much asfar as what else may be needed. Any help would be appreciated:

Is FS first in the list for your otherSEC_*_AUTHENTICATION_METHODS? condor_rm will not usuall attempt toauthenticate at the ADMINISTRATOR level, so it's possible users who run itare authenticating with some other method whose ID isn't in yourQUEUE_SUPER_USERS list.

Also, I looked at the manual, and it didn't specifically say thatwildcards were acceptable in QUEUE_SUPER_USERS, so maybe try just`trusteduser` or maybe `trusteduser@uid_domain`.


- ToddM

Follow-Ups:
- Re: [HTCondor-users] Give access to admin commands to non-root user
  - From: Todd Tannenbaum

References:
- [HTCondor-users] Give access to admin commands to non-root user
  - From: Pezzarossi, Gianni

Prev by Date: Re: [HTCondor-users] Pool-wide event log
Next by Date: Re: [HTCondor-users] Give access to admin commands to non-root user
Previous by thread: [HTCondor-users] Give access to admin commands to non-root user
Next by thread: Re: [HTCondor-users] Give access to admin commands to non-root user
Index(es):
- Date
- Thread