permissions

  1. SMB Share in LXC Container: Permission denied on write

    Hi there, I've got an SMB share from my NAS server for my data. My Jellyfin instance (hosted via docker inside LXC) should have read-/write-access to this SMB share. The problem is: I always get permission denied issues in my LXC container. The Proxmox host can write inside the share, but not...
  2. Unable to run shutdown/poweroff from console with user account.

    In an attempt to give employees an opportunity to shutdown the servers before the power goes out if I'm unreachable, I created a role with only Sys.Console and Sys.PowerMgmt permissions. I then made a "shutdown" group and a "shutdown" user and assigned the role to the group with the only user...
  3. Proxmox + Nextcloud Turnkey on a USB External Hard Drive

    Hello guys, i trying to get proxmox + nextcloud container (from Turnkey image) to host my nextcloud files on USB hard drive. Let's begin: 1. I create a user id, a group id with value 2000 and add the new user to new group on pve host. 2. I do the samething on nextcloud container, so user id and...
  4. Weird permission issues with APT in a priviledged LXC container?

    Hi guys! I'm pretty new to Proxmox, but I feel like I've been doing pretty fine. However, I've run into this really weird issue where I cannot use APT to install some packages in my LXC container. I also had some issues earlier with Docker, but I fixed those by turning on nesting. However, now...
  5. Access to VM console without allowing input (view-only)

    Hello! I'm trying to configure role for view-only guest accounts that need access to view VMs configuration and console, but should not be able to change anything nor input something to console. I've created role with VM.Audit, VM.Console and VM.Monitor privileges, which kind of does the trick...
  6. [SOLVED] Bind mount: nobody nogroup despite UID mapping

    I have successfully set up the Nextcloud Turnkey Container. It runs on an internal domain with automatic ACME DNS certs, it has its own Storage assigned and I am quite happy with it, so far. However, now I'd like to add an "External Storage" to the Nextcloud setup, from my Host system (proxmox)...
  7. [SOLVED] After syncing to a new datastore: backup owner check failed (pve-user@pbs != backup@pam)

    Hi, I wanted to switch to a new datastore (store02) (on different disks) so did the following: Add a second datastore to the pbs server (store02) Added a remote with localhost and the store02 datastore Ran a sync from store01 to the "remote" localhost:store02 Removed store01 Modified the...
  8. Permission set for specific hosts

    Hello, I am trying to achieve some permissions for 2 specific hosts in the cluster. We want to have some usergroup that can administer (create,delete,configure) vms on just 2 hosts. I am thinking of some combination of permissions on /node/<node> /storage and /vms . But as a result I am...
  9. Samba over LXC Permission Issues

    The issue im having is Samba can access a folder however when a new torrent is added to Deluge, Samba becomes unable to touch it and then i have to go chmod it if i wan't to touch it. I have a Samba LXC running as privilleged and a Deluge thin client running as an unprivlleged. I setup the...
  10. Possible issue with permission conjunction for user and group.

    Hi everyone, I'm experimenting with ProxmoxVE and I must say that it's an amazing product! I've been testing permissions and I've noticed something unexpected. There's a group called GR1 with one user USR1. The goal I want to achieve is for everyone from GR1 to be able to view all...
  11. Problem with backups of LXC Containers

    Hi all, I am all of a sudden having an issue with backing up LXC containers on my nodes. I have a couple of servers in LXC format and since a couple of days ago they are all displaying issues when running a backup. Haven't run any updates in a bit, but the nodes also show that there are no...
  12. [SOLVED] Permission issues with snapd and lxc containers.

    I've been trying to get snapd to work in lcx containers butIi get errors on both debian 9 and ubuntu 18.04. I'm using a single node Proxmox VE 5.4-8 that is updated as of 05-july-2019 on the no-subscription repositories with the exception being that pve-manager is still 5.4-8 and not 5.4-10. I...
  13. Adding an OSD requires root

    We've split users into groups and allocated different roles to each group (essentially admins and non-admin users). Non-admin users are limited to performing VM functions, while users in the admin group have the built-in role "Administrator" applied. This should give them the ability to perform...
  14. Unable to change the configuration of container

    ls /etc/pve/nodes/proxmox/lxc/ 100.conf 101.conf 105.conf root@proxmox:~# mkdir /etc/pve/nodes/proxmox/lxc/demo mkdir: cannot create directory '/etc/pve/nodes/proxmox/lxc/demo': Permission denied root@proxmox:~# chmod 0\7277 /etc/pve/nodes/proxmox/lxc/ chmod: changing permissions of...
  15. Permission issue with mounting USB

    I'm trying to mount a USB Zwave device in a container and I had this configuration working in an older installation but now I'm running into permission issues. Here is my conf file for the container: arch: amd64 cores: 2 hostname: hass memory: 8192 net0...
  16. PVEPoolAdmin Role

    If a user is a member of Pool A and Pool B with the PVEPoolAdmin role on both pool A and B, is it possible for that user to move a VM from pool A to pool B ? I noticed if the user removes the VM from the pool, he can't add it back to the pool or to any other pool... which makes sense. But how...
  17. [SOLVED] Permission issue in container with mount

    I have mounted my ZFS share /tank/to my container (8002) with this command: # pct set 8002 -mp0 /tank/,mp=/mnt/tank/ But now when I boot up the container (running ubuntu 18.04) I don't have write permissions. I also can't change the permissions in anyway. How do I give my root user in the...
  18. [SOLVED] Near-root permissions

    Good afternoon. I'm looking for a means to create super user type accounts that are similar to root that authenticate against Active directory. I have AD authentication working but I am unable to fine tune the permissions to allow things for some users/groups to create, stop, out, destroy OSDs...
  19. tighten up security on dump folder

    Hi Everyone, I noticed that the dump folder where all backups go requires and defaults to 777 permissions. Is there a way to remove the rwx permissions to "others" without disrupting Proxmox's backup jobs? Can we specify which user on the host will be running the job that requires full access to...
  20. Datastore.Allocate needed to browse Content (Templates, Backup, etc)?

    I've discovered that the privilege Datastore.Allocate is needed in role in order to grant a user access/browse Content of a storage? This seems pretty backwards - what does then Datastore.AllocateTemplates do? Datastore.Allocate grants users the ability to remove datastores which is not...

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE and Proxmox Mail Gateway. We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!