Hi Dillon, Ceph uses CephX authentication, which gives permission to users on selected Pools to read / write. We give mon 'allow r' to get cluster/Crush map for client.
You can refer to below URL for more information on CephX and creating user keyrings for access to selected / specific pools. http://docs.ceph.com/docs/jewel/rados/configuration/auth-config-ref/ The below URL will give you information on various permissions which can be applied while creating a CephX authentication key. http://docs.ceph.com/docs/firefly/rados/operations/auth-intro/ Hope this will give some insight and way forward to proceed. Thanks, Daleep Singh Bais On 09/27/2016 12:02 PM, 卢 迪 wrote: > > Hello all, > > > I'm a newbie of Ceph. I read the document and created a ceph cluster > against VM. I have a question about how to apply user managerment to > the cluster. I'm not asking how to create or modify users or user > privileges. I have found this in the Ceph document. > > > I want to know: > > > 1. Is there a way to know the usage of all privileges? For example, I > created an user client.appuser with mon "allow r", this user can > accsess the Ceph; If I removed the mon "allow r", it will be time out. > (in this case, I mount the cluster with cephfs). If someone has these > information, could you please share with me? > > > 2. What kind of situation would you create differnet users for > cluster? In currently, I user admin user to access the all cluster, > such as start cluster, mount file system and etc. It looks like the > appuser( I created above) can mount file system too. Is it possible to > create an user liking the OS user or database user? So, one user > upload some data, the others can't see them or can only read them. > > > Thanks, > > Dillon > > > > _______________________________________________ > ceph-users mailing list > ceph-users@lists.ceph.com > http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
_______________________________________________ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
