Hi, I am currently trying to categorize cfengine3 client servers into groups.
For example: Group1 has 2 cfengine3 clients c1 and c2, Group2 has 2 cfengine3 clients c3 and c4. My objective is to restrict access to promises on the cfengine3 policy server meant for Group1 to only c1 and c2, i.e, when the cf-agent on c3 and c4 polls the cfengine3 policy server they should neither be able to access or download promises meant for group1 and vice versa for group2. I am not looking at user level restrictions at this point, as I have mapped the root on the cfengine3 policy server to that on the clients. I am trying to understand how restrictions work purely on the cfengine3 host level and once this is achieved I would move on to a user level access restriction or a combination of both host and user level restrictions. Thanks in advance. Regards, -- Vivek Varghese Cherian (विवेक वर्गीस चेरियान)
_______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
