371
edits
Changes
Jump to navigation
Jump to search
Line 96:
Line 96: − + − === Authentication ===+ − {{Note box|Authentication is partially working. − + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + − - LDAP, will allow any smeserver user access, with whoever is defined in the phpvirtualbox adminUser config item as the administrator (default is admin)+ + + + + − - WebAuth, will allow any user defined in the phpvirtualbox Users config item, or belonging to groups defined in the phpvirtualbox userGroups config items access (Note: using group access will generate lots of errors in the /var/loh/httpd/error.log file ATM). Admin access is defined by the phpvirtualbox adminUser config item+ + − + − Your credentials are the user admin of the SME Server and its password but you can add more users by the [[Phpvirtualbox#DB_Configuration|DB Configuration]].+ + − to add individual users<syntaxhighlight lang="bash">+ − config setprop phpvirtualbox Users <list of comma separated users>+ − </syntaxhighlight>to add groups<syntaxhighlight lang="bash">+ − + − </syntaxhighlight>then you'll need to activate via:<syntaxhighlight lang="bash">+ − + − </syntaxhighlight>{{Tip box|You can see [[VirtualBox_4.0_on_SME_Server_v8_beta_6|the Tutorial]] hosted on our Wiki in order to learn : + − *how to create [[VirtualBox_4.0_on_SME_Server_v8_beta_6#Creating_a_Virtual_Machinecreate| your first VM]]+ − *how to automatically [[VirtualBox_4.0_on_SME_Server_v8_beta_6#Automatically_Start_Virtual_Machine|start VM with the server]] }}+ + + + + − + + + + + + + + + + + + + + + + Line 240:
Line 315: − + − {{Note box|Authentication is still being worked on, but mostly works as advertised.}} − you can allow authentication to phpvirtualbox via number of methods. This feature is the default behaviour since the bug opened is solved http://sourceforge.net/p/phpvirtualbox/bugs/7/. − − config setprop phpvirtualbox authtype WebAuth − signal-event smeserver-phpvirtualbox-update − {| class="wikitable" − |+authtype − ! − ! − |- − |BuiltIn − |will use the phpvirtualbox builtin authentication which lets you manage users within phpvirtualbox ONLY. It does '''NOT''' have any interface/interaction with smeserver users − |- − |LDAP − |will allow any smeserver user access, with whomever is defined in the phpvirtualbox adminUser config item as the administrator (default is admin) − |- − |WebAuth − |will allow any user defined in the phpvirtualbox Users config item, or belonging to groups defined in the phpvirtualbox userGroups config items access − Admin access is defined by the phpvirtualbox adminUser config item − − ('''''Note:''''' using group access will generate lots of errors in the /var/log/httpd/error.log file ATM). − |- − |AD − |is defined, but has not been tested. − will allow any user defined in the phpvirtualbox Users config item, or belonging to AD groups defined in the phpvirtualbox userGroups config items access. − − Admin access is defined by the phpvirtualbox adminUser config item − |- − |none − |everyone on your local network has access, without needing to log in − |} − − =====Allow Specific Users===== − Works with WebAuth and AD − − The users must be declared and a password must be set in the server-manager. − − config setprop phpvirtualbox Users user1,user2,user3 − signal-event smeserver-phpvirtualbox-update − − =====Allow Specific Groups===== − Works with WebAuth and AD − − These groups must be declared in the server-manager and users need to be included − − config setprop phpvirtualbox userGroups Group1,Group2,Group3 − signal-event smeserver-phpvirtualbox-update − −
→Authentication: re-arrange where on page and fill-out
</tabs>
</tabs>
Go to the phpvirtualbox panel at the url https://your-sme-ip/phpvirtualbox on your local-network. '''You can not reach this contrib trought internet'''.
Go to the phpvirtualbox panel at the url https://your-sme-ip/phpvirtualbox on your local-network. '''You can not reach this contrib trought the internet'''.
The only user with access at this stage is your SME Server admin user. See Authentication below on how to change this.
- BuiltIn, will use the phpvirtualbox builtin authentication which lets you manage users within phpvirtualbox ONLY. It does not have any interface/interaction with smeserver users
{{Tip box|You can see [[VirtualBox_4.0_on_SME_Server_v8_beta_6|the Tutorial]] hosted on our Wiki in order to learn :
*how to create [[VirtualBox_4.0_on_SME_Server_v8_beta_6#Creating_a_Virtual_Machinecreate| your first VM]]
*how to automatically [[VirtualBox_4.0_on_SME_Server_v8_beta_6#Automatically_Start_Virtual_Machine|start VM with the server]] }}
===Authentication===
{{Note box|Authentication is still being worked on, but mostly works as advertised.}}
you can allow authentication to phpvirtualbox via number of methods. At install, default is WebAuth with admin defined as the adminUser.
config setprop phpvirtualbox authtype <none/Builtin/LDAP/WebAuth/AD>
signal-event smeserver-phpvirtualbox-update
{| class="wikitable"
|+config setprop phpvirtualbox authtype <>
!Property
!Description
!adminUser
!Users
!userGroups
|-
|none
|everyone on your local network has access, without needing to log in
|ignored
|ignored
|ignored
|-
|BuiltIn
|will use the phpvirtualbox builtin authentication which lets you manage users within phpvirtualbox ONLY.
Default admin user is admin with password admin (this is a phpvirtualbox thing....)
It does '''NOT''' have any interface/interaction with smeserver users
|ignored
|ignored
|ignored
|-
|LDAP
|will allow any smeserver user access, with whomever is defined in the phpvirtualbox adminUser config item as the administrator
|administrative rights
|ignored
|ignored
|-
|'''WebAuth'''
|<u>Default, with adminUser defined as admin</u>
will allow any user defined in the phpvirtualbox Users config item, or belonging to groups defined in the phpvirtualbox userGroups config items access
Admin access is defined by the phpvirtualbox adminUser config item
('''''Note:''''' using group access will generate lots of errors in the /var/log/httpd/error.log file ATM).
|administrative rights
|user rights
|user rights
|-
|AD
|is defined, but has not been tested.
will allow any user defined in the phpvirtualbox Users config item, or belonging to AD groups defined in the phpvirtualbox userGroups config items access.
Admin access is defined by the phpvirtualbox adminUser config item
|administrative rights
|user rights
|user rights
|}
=====Allow Specific Users=====
Works with WebAuth and AD
- AD, is defined, but has not been tested}}
The users must be declared and a password must be set in the server-manager.
config setprop phpvirtualbox Users user1,user2,user3
signal-event smeserver-phpvirtualbox-update
=====Allow Specific Groups=====
Works with WebAuth and AD
config setprop phpvirtualbox userGroups <list of comma separated smeserver groups>
These groups must be declared in the server-manager and users need to be members of the group/s
signal-event smeserver-phpvirtualbox-update
config setprop phpvirtualbox userGroups Group1,Group2,Group3
signal-event smeserver-phpvirtualbox-update
=== Access the ISO share directory via samba ===
{{Note box|This is NOT working at the moment bug #12336}}
This is where ISOs used for building/installing VMs are stored.
By default, anyone defined in adminUser, Users or userGroups will have write access to the /opt/vbox/ISOs directory (share name virtualbox), regardless of the authtype.
===Restart the vboxweb-service===
I suggest that we probably need a samba property with values none, adminUser, all.
{| class="wikitable"
|+config setprop phpvirtualbox samba <>
!Property
!Description
|-
|none
|No share created or visible
|-
|adminUser
|user defined in adminUser ONLY, has write access to virtualbox share
|-
|all
|Any user defined in adminUser, Users or userGroups has write access to the virtualbox share
|}
=== Restart the vboxweb-service ===
phpvirtualbox controls a virtualbox service (vboxweb-service), you may need to restart it if you can't connect to phpvirtualbox
phpvirtualbox controls a virtualbox service (vboxweb-service), you may need to restart it if you can't connect to phpvirtualbox
signal-event console-save
signal-event console-save
====Authentication====
====Access The Web Interface Remotely====
=== Access The Web Interface Remotely ===
{{Warning box|Instructions below could be a flaw in Phpvirtualbox, you should remotely access trough [[SME_Server:Documentation:FAQ:booklet#Server-Manager|SSH]] or with [[OpenVPN_Bridge|openvpn]]}}
{{Warning box|Instructions below could be a flaw in Phpvirtualbox, you should remotely access trough [[SME_Server:Documentation:FAQ:booklet#Server-Manager|SSH]] or with [[OpenVPN_Bridge|openvpn]]}}
Create the following folder if it doesn't exist.
Create the following folder if it doesn't exist.