Re: [libvirt] [PATCH v2] polkit: Allow password-less access for 'libvirtadm' group
On Wed, Apr 29, 2015 at 11:04:42AM -0400, Cole Robinson wrote:
Many users, who admin their own machines, want to be able to access
system libvirtd via tools like virt-manager without having to enter
a root password. Just google 'virt-manager without password' and
you'll find many hits. I've read at least 5 blog posts over the years
describing slightly different ways of achieving this goal.
Let's finally add official support for this.
Install a polkit-1 rules file granting password-less auth for any user
in the new 'libvirtadm' group. Create the group on RPM install
Debian calls the group 'libvirt', just in case we want to be
consistent. libvirtadm doesn't sound like a perfect match either since
starting/stopping machines often isn't considered "administration" by
those users who look for solutions to the problem you describe above.
But I won't nitpick here, we can trivially patch this downstream.
Cheers,
-- Guido