Hello all,
Whenever configuring infrastructure, I am so used to every service or application having its own user authentication, that I immediately set up all of my proxmox servers to have their own user accounts on the proxmox backup server, that they use to create backups. This is all well and good for that server to create and restore its own backups, but immediately hits a wall if something happens to that server, and one needs to restore all of the virtual machines on one of the other Proxmox servers. This is because the backups are owned by a different user, so the Proxmox server cannot restore them.
From googing around, people have suggested just having one backups user that one uses on all proxmox servers. This doesn't "feel" right, but is the only solution for now, if one needs to be able to restore backups on a different server. It would be great if I could do either of the following:
a) Have a "user group" that owns the backup, and allow users in that group to be able to create and restore those backups.
b) Have multiple "app specific passwords" as Google and others call them, that I could create against a single user. Then I can give each proxmox server its own to authenticate with. At least that way, I can always delete the appropriate app specific password should something come up. PBS permissions would not need to change because all the backups are owned by just one user, as far as PBS is concerned.
Edit
I feel that I should mention that these Proxmox servers are not clustered (and run across different geographic regions). This is probably why this affects me and may not be affecting a lot of other people who run multiple proxmox servers.
Whenever configuring infrastructure, I am so used to every service or application having its own user authentication, that I immediately set up all of my proxmox servers to have their own user accounts on the proxmox backup server, that they use to create backups. This is all well and good for that server to create and restore its own backups, but immediately hits a wall if something happens to that server, and one needs to restore all of the virtual machines on one of the other Proxmox servers. This is because the backups are owned by a different user, so the Proxmox server cannot restore them.
From googing around, people have suggested just having one backups user that one uses on all proxmox servers. This doesn't "feel" right, but is the only solution for now, if one needs to be able to restore backups on a different server. It would be great if I could do either of the following:
a) Have a "user group" that owns the backup, and allow users in that group to be able to create and restore those backups.
b) Have multiple "app specific passwords" as Google and others call them, that I could create against a single user. Then I can give each proxmox server its own to authenticate with. At least that way, I can always delete the appropriate app specific password should something come up. PBS permissions would not need to change because all the backups are owned by just one user, as far as PBS is concerned.
Edit
I feel that I should mention that these Proxmox servers are not clustered (and run across different geographic regions). This is probably why this affects me and may not be affecting a lot of other people who run multiple proxmox servers.
Last edited:
