Single User Image access
-
Good Day
I would like to know if, where and how to enable a single user to get access to the image list when PXE booting.
We have various, so 1 user needs to only have access to a specific image on the image list.I.E userX needs access to imageXYZ on the PXE list.
Please advise if this can be done?
-
I don’t know if the access control plugin applies to the boot menu… @Fernando-Gietz ?
-
The answer is NO. The AccessControl plugin only restrincts the access in the WEBUI and not in the PXE booting.
-
Any chance of this feature being added to the PXE booting menu?
-
If you change the context to one image per computer instead of user then its possible. Let me explain. The iPXE menu has no concept of user, only computer. Normally in the Deploy Image iPXE menu entry it displays all images on the FOG server. There is a FOG Configuration setting that changes this list to only display the image defined for that host as long as the system has been registered in FOG. Will that give you what you are looking for? Understand this is a global setting in that you can’t have a full list of images here for one user and only the defined image for another user (since iPXE doesn’t have the concept of users).
-
@george1421 this makes sense thank you.
however where does one find this setting?
-
@sonic136 Its under FOG Configuration->FOG Settings->FOG BootSettings->IMAGE LIST MENU the default is ON to display all images. Uncheck to only display the defined image for that host.
-
@george1421 Thank you!!
-
@sonic136 Let us know if this solves your issue. I know its not exactly what you are asking for.
-
@george1421 Its a step in the right direction.
I am looking into using sites and locations now to isolate users and hosts.
-
@sonic136 Sites and locations would be used when you have storage nodes involved. You would create a location then assign a workstation (host) and storage node to that location. That way image deployment uses the closest storage node to the workstation.
Just be aware that by default storage nodes are deploy only. Only master nodes are normally capture/deploy capable.
-
@george1421 Well this sucks then it wont work.
I really need to restrict access for a single user to have access to 2 images only.
Any other suggestions would be greatly appreciated please
-
@sonic136 FOG is open source so you are more than welcome to join in and help implement this sort of things.
We’ll definitely help and guide you the way.
-
@sonic136 said in Single User Image access:
Well this sucks then it wont work
Which part won’t work? The single image in the deploy image list or storage nodes being deploy only?
When you say “a single user to have access to 2 images only”. Is that the same 2 images for every user globally?
-
@Sebastian-Roth i dont have a developer bone in my body. i wouldnt have a cooking clue where to start…
-
@george1421 the sites and locations wont work.
we also have multiple images for various locations. ie. library, library training room, law, general lab and so on…
-
@sonic136 I don’t say this very often, but I don’t think FOG is good fit for what you need here. FOG can display either the defined image for the target computer or a list of all images for the target computer. There are no facilities to allow a subset of images based on the target computer. The IPXE menu doesn’t understand the concept of user. At this level it can only understand the concept of computer.
-
@george1421 Fog is a waaaaaaayyyyyyyyyyy better fit than Zenworks at the moment, it images 4x faster and its more stable. Fog is actually working very well without these refinements that I want to do