• Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
  • Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

Using Virtual Machine Manager to remote to another VMM failing

Scheduled Pinned Locked Moved Solved
Linux Problems
2
3
4.7k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    sudburr
    last edited by Jul 11, 2017, 3:15 PM

    Server
    • OS: CentOS 7.3.1611
    Description

    Two identically configured CentOS 7.3.1611 servers except for name and IP.
    Joined to an AD Domain.
    Logged into using AD credentials.

    Using Virtual Machine Manager to remote connect from ServerA to ServerB, I can tell the authentication is working, according to:

     systemctl status sshd

    But I’m getting:

    Unable to connect to libvirt.

authentication unavailable: no polkit agent
available to authenticate action
`org.libvirt.unix.manage'

Verify that the 'libvirtd' deamon is running on the remote host.

    This is the same as according to:

    systemctl status libvirtd.service

    Full details on the failed connection as reported by VMM are:

    Unable to connect to libvirt.

authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'

Verify that the 'libvirtd' daemon is running
on the remote host.

Libvirt URI is: qemu+ssh://ADAccount@10.12.40.124/system

Traceback (most recent call last):
  File "/usr/share/virt-manager/virtManager/connection.py", line 904, in _do_open
    self._backend.open(self._do_creds_password)
  File "/usr/share/virt-manager/virtinst/connection.py", line 148, in open
    open_flags)
  File "/usr/lib64/python2.7/site-packages/libvirt.py", line 105, in openAuth
    if ret is None:raise libvirtError('virConnectOpenAuth() failed')
libvirtError: authentication unavailable: no polkit agent available to authenticate action 'org.libvirt.unix.manage'

    [ Standing in between extinction in the cold and explosive radiating growth ]

    W 1 Reply Last reply Jul 11, 2017, 10:43 PM Reply Quote 0
    • S
      sudburr
      last edited by Jul 11, 2017, 4:16 PM

      Okay, so I figured out that I need to allow a group to have remote libvirt SSH

      vim /etc/polkit-1/localauthority/50-local.d/50-libvirt-remote-access.pkla

      Entering the following:

      [Remote libvirt SSH access]
Identity=unix-group:remote-libvirt
Action=org.libvirt.unix.manage
ResultAny=yes
ResultInactive=yes
ResultActive=yes

      The next problem is that I want to add the ADGroup to the local group “remote-libvirt”

      [ Standing in between extinction in the cold and explosive radiating growth ]

      1 Reply Last reply Reply Quote 0
      • W
        Wayne Workman @sudburr
        last edited by Wayne Workman Jul 11, 2017, 4:44 PM Jul 11, 2017, 10:43 PM

        @sudburr I’m not sure what is going on or what you’re trying to do - but virt-manager typically only connects to hosting systems via SSH, not the guests. Virt-Manager provides direct console access to guests, but SSH to the guest is not involved in this, it’s via ssh to the host.

        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
        Daily Clean Installation Results:
        https://fogtesting.fogproject.us/
        FOG Reporting:
        https://fog-external-reporting-results.fogproject.us/

        1 Reply Last reply Reply Quote 0
        • 1 / 1
        1 / 1
        • First post
          1/3
          Last post

        145

        Online

        12.0k

        Users

        17.3k

        Topics

        155.2k

        Posts
        Copyright © 2012-2024 FOG Project