Hide Forgot
Document URL: https://access.redhat.com/documentation/en/red-hat-cloudforms/4.1/managing-providers/#adding_an_ansible_tower_provider Section Number and Name: 2.2.1.5 Adding an Ansible Tower Provider: credentials Describe the issue: The Ansible provider currently provides no requirements for privilege level on the authenticating user, my security standards prevent me from giving cart blanch access to my Ansible environment. Can you please enumerate the permissions required by CFME so that I can use least privilege when creating the CFME user for my Ansible environment. Suggestions for improvement: Add a section indicating required permissions for the Ansible provider. Additional information:
Moving to the default assignee for triaging. Raising needinfo against Brandon for comment #2.
Thank you for raising this bug. After further discussion with the program team, we have been given the advice not to document specific permissions for service accounts at this time based on the following article - http://cloudformsblog.redhat.com/2017/08/16/security-management-operations/ As such, I will be closing this bug for now, but we can re-investigate this request again in the future if required.