RH318 - ch04s04

In this exercise, you will configure users in your Red Hat Virtualization environment using both newly configured and existing roles, as needed to perform common job responsibilities.

Outcomes

You should be able to configure four different users from the lab.example.com profile with various roles:

rhvadmin with the SuperUser role system-wide.
normaluser with the UserRole role system-wide.
poweruser with the PowerUserRole role system-wide.
dcadmin with the DataCenterAdmin role for the development data center.
Although we configure users and roles in this chapter all subsequent chapters will use the default username, password and profile.

Log in as the student user on workstation, and then run the lab users-roles start command. This command ensures that the domain users of the Red Hat Enterprise Linux Identity Management server in the classroom are mapped to the appropriate roles in the Red Hat Virtualization environment.

[student@workstation ~]$ lab users-roles start

Assign the SuperUser role, system-wide, to the rhvadmin user in the lab.example.com profile.
1. On workstation, open Firefox and navigate to https://rhvm.lab.example.com/ovirt-engine. Click Administration Portal to log in to the web interface as the internal user called admin with redhat as the password. Select the internal profile.
2. In the menu, click Administration, and then click Configure.
3. In the Configure dialog box, click System Permissions.
4. Click the Add button to add a role to a user.
5. In the Add System Permission to User dialog box, click the User radio button, if not already selected. Click the drop-down list under Search to select the lab.example.com (lab.example.com-authz) item. This item represents the lab.example.com profile you configured in the preceding exercise to allow Red Hat Virtualization Manager to use the Red Hat Enterprise Linux Identity Manager as a source for the users.
6. Click GO to display the users in the Red Hat Enterprise Linux Identity Manager server.
7. In the list of users that displays, click the check box for the rhvadmin user.
8. Click the drop-down list under Role to Assign. From the list of available roles, select SuperUser role for rhvadmin.
9. Click OK to assign the specified role to the selected user. Notice that the rhvadmin user displays in the System Permissions list. This list confirms that the rhvadmin user has been assigned a role granting administrative access to Red Hat Virtualization.
10. In the Configure dialog box, click Close.
Verify that you can log in to the Administration Portal as the rhvadmin user in the lab.example.com profile.
1. Sign out as admin from the Administration Portal.
2. Log back in to the Administration Portal as the rhvadmin user that you have just added. Use rhvadmin as the user name and redhat as the password. In the Profile field, click the drop-down list and select the lab.example.com profile.
  Click the Log In button to log in as the rhvadmin user.
As rhvadmin, assign the UserRole role, system-wide, to the normaluser user from the lab.example.com profile.
1. In the web interface click Administration on the navigation pane in the left side and click Configure from the options that appear.
2. In the Configure dialog box, click System Permissions.
3. Click the Add button to add a role to a user.
4. In the Add System Permission to User dialog box, click the User radio button, if not already selected. Click the drop-down list under Search to select the lab.example.com (lab.example.com-authz) item.
5. Click GO to display the users in the Red Hat Enterprise Linux Identity Manager server.
6. In the list of users that displays, click the check box for the normaluser user.
7. In the list of available roles, leave the default UserRole role selected for the normaluser user.
8. Click OK to assign the specified role to the selected user. Notice that the normaluser user displays in the System Permissions list. This list confirms that the normaluser user has been assigned a role granting access to Red Hat Virtualization.
Assign the PowerUserRole role, system-wide, to the user poweruser in the lab.example.com profile.
1. Click the Add button to add a role to another user.
2. In the Add System Permission to User dialog box, click the User radio button, if not already selected. Click the drop-down list under Search to select the lab.example.com (lab.example.com-authz) item.
3. Click GO to display the users in the Red Hat Enterprise Linux Identity Manager server.
4. In the list of users that displays, click the check box for the poweruser user.
5. Click the drop-down list under Role to Assign. Choose PowerUserRole role from the list of available roles.
6. Click OK to assign the specified role to the selected user. Notice that the poweruser user displays in the System Permissions list. This list confirms that the poweruser user has been assigned a role granting access to Red Hat Virtualization.
7. In the Configure dialog box, click Close.
Assign the DataCenterAdmin role, for only the development data center, to the dcadmin user in the lab.example.com profile.
1. In the menu click Compute, then choose Data Centers.
2. Click the development data center among the available data centers.
3. Navigate to the Permissions tab and click Add to add a role to a user for the development data center.
4. In the Add Permission to User dialog box, click the User radio button, if not already selected. Click the drop-down list under Search to select the lab.example.com (lab.example.com-authz) item.
5. Click GO to display the users in the Red Hat Enterprise Linux Identity Manager server.
6. In the list of users that displays, click the check box for the dcadmin user.
7. Click the drop-down list under Role to Assign. From the list of available roles, select DataCenterAdmin.
8. Click OK to assign the specified role to the selected user. Notice that the dcadmin user displays in the Permissions list. This list confirms that the dcadmin user has been assigned a role granting access to Red Hat Virtualization for the specific data center.
Sign out as rhvadmin from the Administration Portal.

Finish

On workstation, run the lab users-roles finish script to complete this exercise.

[student@workstation ~]$ lab users-roles finish

This concludes the guided exercise.

Discuss Red Hat Virtualization

Go to community

Welcome to the Red Hat Virtualization (RH318) group in the Red Hat Learning Community!

cschunke

26 wrz 2023

We are excited to launch a space dedicated to the Red Hat Training course Red Hat Virtualization! To gain the most value from this group - click the "Join Group" button in the upper right hand corner of the group home page.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to RH318.Read more about Red Hat Virtualization here.

284

Revision: rh318-4.3-c05018e