Doc error? : Setting up access to VNETs

http://docs.opennebula.org/4.14/user/virtual_resource_management/vgg.html#setting-up-access-to-vnets

The documentation specify that « Once a VNET is setup by a Cloud admin, she needs to make it available to other users in the cloud. […] Users can only attach VMs or make reservations from VNETs with USE rights on the VNET ».

But I finally found out why all users can use all VNETs created by oneadmin user even if the VNET ACL doesn’t grant other:use permission : there is a default entry in the ACL tab that grant use permission on all VNETs and Datastores for the default users group and for all new group created.

If this behavior is normal, I think the documentation is wrong.

Hi,

Thank you for your comments, I’ve opened a ticket so we don’t forget about it.

Probably we should advise to assign the VNet to the group’s VDC. That creates internally the ACL rules needed.