permissions

  1. B

    NTFS Shared Mount Permission issues for Docker in CT

    Hi, Not sure what logs or docs to add, please lmk what might help to better understand the issue. I'm running an unprivileged Ubuntu 22.04 Container Template with docker & docker-compile, everything installed as per docker docs instructions. I'm running the Arr suite (Radarr, Sonarr, Lidarr...
  2. F

    How to reset Proxmox permission settings?

    So I ended up doing a mistake when I was changing the permissions of some drives I have from when I didn't use Proxmox (just a regular Deb server). I ended up chown -R root / by accident. Yeah big mistake. But not really. Instead of the folder I thought it was going to do, it ended up doing the...
  3. X

    Understanding LXC UID Mappings

    Reading the Unprivileged LXC containers wiki page, it seems UID mappings are needed in the LXC config files to allow permissions for mount points. I thought that the >100000 range of host ids was already mapped to the CT starting with id 0 when you create a new unprivileged CT. Why does the...
  4. X

    Trouble with LXC mount point permissions

    I created an unprivileged container with the number 101. I mounted a single disk ZFS pool from the host by adding an mp0: line to the /etc/pve/lxc/101.conf file. I noticed the container does not have write permissions to this mount point. After reading the Unprivileged LXC containers wiki page...
  5. H

    [TUTORIAL] How to join a Proxmox cluster to an Active Directory Domain

    This tutorial will walk through the steps necessary to join your Proxmox server to Microsoft Active Directory on a Windows 2019 Server. You will be able to sync your users and groups into the Proxmox Permissions Panel in the GUI, and log into the web console with active directory credentials...
  6. A

    Possible to limit API access to just Cluster > Firewall > IPset > Name?

    Background: We run PVE with a couple of LXCs and VMs with one LXC representing a reverse proxy for the different backend services. I was wondering if I could run Fail2Ban on the backends wich would then block/release IPs on the PVE-host by modifying a specific IPset. However, it seems I cannot...
  7. grin

    Are group acls broken in v6.4?

    I was fighting to create an already tested state of: "a group [member] who can only manage users within the group foo" and kept failing, and I was thinking it's me: # pveum acl modify /access/realm/pve -groups vmadmin -roles PVEUserAdmin 400 Parameter verification failed. path: invalid ACL path...
  8. N

    [SOLVED] SMB Share in LXC Container: Permission denied on write

    Hi there, I've got an SMB share from my NAS server for my data. My Jellyfin instance (hosted via docker inside LXC) should have read-/write-access to this SMB share. The problem is: I always get permission denied issues in my LXC container. The Proxmox host can write inside the share, but not...
  9. F

    Unable to run shutdown/poweroff from console with user account.

    In an attempt to give employees an opportunity to shutdown the servers before the power goes out if I'm unreachable, I created a role with only Sys.Console and Sys.PowerMgmt permissions. I then made a "shutdown" group and a "shutdown" user and assigned the role to the group with the only user...
  10. V

    Proxmox + Nextcloud Turnkey on a USB External Hard Drive

    Hello guys, i trying to get proxmox + nextcloud container (from Turnkey image) to host my nextcloud files on USB hard drive. Let's begin: 1. I create a user id, a group id with value 2000 and add the new user to new group on pve host. 2. I do the samething on nextcloud container, so user id and...
  11. B

    Weird permission issues with APT in a priviledged LXC container?

    Hi guys! I'm pretty new to Proxmox, but I feel like I've been doing pretty fine. However, I've run into this really weird issue where I cannot use APT to install some packages in my LXC container. I also had some issues earlier with Docker, but I fixed those by turning on nesting. However, now...
  12. G

    Access to VM console without allowing input (view-only)

    Hello! I'm trying to configure role for view-only guest accounts that need access to view VMs configuration and console, but should not be able to change anything nor input something to console. I've created role with VM.Audit, VM.Console and VM.Monitor privileges, which kind of does the trick...
  13. H

    [SOLVED] Bind mount: nobody nogroup despite UID mapping

    I have successfully set up the Nextcloud Turnkey Container. It runs on an internal domain with automatic ACME DNS certs, it has its own Storage assigned and I am quite happy with it, so far. However, now I'd like to add an "External Storage" to the Nextcloud setup, from my Host system (proxmox)...
  14. C

    [SOLVED] After syncing to a new datastore: backup owner check failed (pve-user@pbs != backup@pam)

    Hi, I wanted to switch to a new datastore (store02) (on different disks) so did the following: Add a second datastore to the pbs server (store02) Added a remote with localhost and the store02 datastore Ran a sync from store01 to the "remote" localhost:store02 Removed store01 Modified the...
  15. I

    Permission set for specific hosts

    Hello, I am trying to achieve some permissions for 2 specific hosts in the cluster. We want to have some usergroup that can administer (create,delete,configure) vms on just 2 hosts. I am thinking of some combination of permissions on /node/<node> /storage and /vms . But as a result I am...
  16. A

    Samba over LXC Permission Issues

    The issue im having is Samba can access a folder however when a new torrent is added to Deluge, Samba becomes unable to touch it and then i have to go chmod it if i wan't to touch it. I have a Samba LXC running as privilleged and a Deluge thin client running as an unprivlleged. I setup the...
  17. N

    Possible issue with permission conjunction for user and group.

    Hi everyone, I'm experimenting with ProxmoxVE and I must say that it's an amazing product! I've been testing permissions and I've noticed something unexpected. There's a group called GR1 with one user USR1. The goal I want to achieve is for everyone from GR1 to be able to view all...
  18. D

    Problem with backups of LXC Containers

    Hi all, I am all of a sudden having an issue with backing up LXC containers on my nodes. I have a couple of servers in LXC format and since a couple of days ago they are all displaying issues when running a backup. Haven't run any updates in a bit, but the nodes also show that there are no...
  19. I

    [SOLVED] Permission issues with snapd and lxc containers.

    I've been trying to get snapd to work in lcx containers butIi get errors on both debian 9 and ubuntu 18.04. I'm using a single node Proxmox VE 5.4-8 that is updated as of 05-july-2019 on the no-subscription repositories with the exception being that pve-manager is still 5.4-8 and not 5.4-10. I...
  20. I

    Adding an OSD requires root

    We've split users into groups and allocated different roles to each group (essentially admins and non-admin users). Non-admin users are limited to performing VM functions, while users in the admin group have the built-in role "Administrator" applied. This should give them the ability to perform...

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!