Description of problem: Non-root users need to be able to "view" but not "administer" cluster and service status for themselves. Can this be made configurable via a flag in cluster.conf for those who want to keep the cluster status private, i.e. for root only? Version-Release number of selected component (if applicable): rgmanager-2.0.46-1.el5 How reproducible: Easy to reproduce, see below: Steps to Reproduce: 1. Log in as non-root user 2. Run "/usr/sbin/clustat" Actual results: [oraadm@nodea ~]$ /usr/sbin/clustat Could not connect to CMAN: Permission denied Expected results: Successful cluster status listing, including status and owner of each service. Additional info: This was fixed in RHCS 4, but it re-appeared again with the new RHCS 5 core. See Bug 172178 for the RHCS 4 bugzilla entry. (9:36:34 AM) lon: rgmanager needs to split the sockets up - (9:36:40 AM) lon: use 1 socket for 'requests' e.g. clusvcadm (9:36:46 AM) lon: and the other for 'status' - e.g. clustat (9:36:48 AM) lon: right now it's 1 socket
Created attachment 366498 [details] Possible fix Allows users in the 'root' group access to 'clustat' information. Since cman also has this requirement for cman_tool (nodes|status|services|etc), it's not unreasonable to mirror this. Clusvcadm is still restricted to the root user.
This bug appears to have been reported against 'rawhide' during the Fedora 12 development cycle. Changing version to '12'. More information and reason for this action is here: http://fedoraproject.org/wiki/BugZappers/HouseKeeping
fixed in rgmanager-3.0.7