Hi all,
I've got a ProxMox 8.0.3 cluster set up and I want to add a group of contractors with its own administrator. Then create a Pool of VMs that the group can use, administered by the group admin. Optimally, I would like the group admin to be able to add & delete users and create & delete VMs but ONLY within scope of the Pool / Group they are part of.
I've been able to create users that can log in and see only the VMs within /pool/Contract which I believe will give me what I want for most users. But the admin can't create / delete VMs or users without adding top-level permissions (to / or specifically to /access , /storage , etc...) and then the Pool Admin gets to see all users & VMs.
Is it possible to have an admin that sees only what's within a specific Pool / Group?
Thanks!
I've got a ProxMox 8.0.3 cluster set up and I want to add a group of contractors with its own administrator. Then create a Pool of VMs that the group can use, administered by the group admin. Optimally, I would like the group admin to be able to add & delete users and create & delete VMs but ONLY within scope of the Pool / Group they are part of.
I've been able to create users that can log in and see only the VMs within /pool/Contract which I believe will give me what I want for most users. But the admin can't create / delete VMs or users without adding top-level permissions (to / or specifically to /access , /storage , etc...) and then the Pool Admin gets to see all users & VMs.
Is it possible to have an admin that sees only what's within a specific Pool / Group?
Thanks!
Last edited: