openmediavault-admin group

1st Official Post

    New to OMV and just installed 6.0.24.


    The OMV access rights management document (https://docs.openmediavault.or…ss_rights_management.html) says:

    "A non-privileged user can become a web interface administrator by adding them to the openmediavault-admin group."


    However, the openmediavault-admin group is not displayed on the User Management | Groups | Edit screen.

    • Official Post
    Quote from Cannondale

    However, the openmediavault-admin group is not displayed on the User Management | Groups | Edit screen.

    System groups are not displayed. Since this should not be a common thing to do, you should just use the command line


    sudo usermod -a -G openmediavault-admin USERNAME

    omv 7.7.10-1 sandworm | 64 bit | 6.11 proxmox kernel

    plugins :: omvextrasorg 7.0.2 | kvm 7.1.8 | compose 7.6.10 | cterm 7.8.7 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.3.1


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • votdev

    Added the Label resolved

  • votdev

    Added the Label OMV 6.x

    Thanks for the information ryecoaaron! This is a workable solution.


    Quote


    System groups are not displayed. Since this should not be a common thing to do

    Quote


    I still don't understand peoples obsession with this..


    This OMV server will provide file sharing services to users in a medium sized office setting. Having a few designated users who have admin rights would seem to be a common occurrence. This prevents many people from having access to the official admin account and provides the ability to track config changes by user.

    • Official Post
    Quote from Cannondale

    This prevents many people from having access to the official admin account and provides the ability to track config changes by user.

    Except that giving someone openmediavault-admin privileges is effectively giving the user full root. They could remove their tracks if they wanted to.

    omv 7.7.10-1 sandworm | 64 bit | 6.11 proxmox kernel

    plugins :: omvextrasorg 7.0.2 | kvm 7.1.8 | compose 7.6.10 | cterm 7.8.7 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.3.1


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    Like 1
    • Official Post
    Quote from Cannondale

    Thanks for the information ryecoaaron! This is a workable solution.



    This OMV server will provide file sharing services to users in a medium sized office setting. Having a few designated users who have admin rights would seem to be a common occurrence. This prevents many people from having access to the official admin account and provides the ability to track config changes by user.

    Honestly, that makes it an even WORSE idea.

    Code
    Good morning,
I would like to return to the subject because the separation of permissions is important to allow good management in the context of corporate use.

example: I am the administrator and my client wants to view logs or take x action

In this case, allowing a user to have to go through the main administration group is a significant point of weakness.
    • Official Post

    OMV isn't targeted at corporate use.

    omv 7.7.10-1 sandworm | 64 bit | 6.11 proxmox kernel

    plugins :: omvextrasorg 7.0.2 | kvm 7.1.8 | compose 7.6.10 | cterm 7.8.7 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.3.1


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Official Post
    Quote from dexter74
    Code
    Good morning,
I would like to return to the subject because the separation of permissions is important to allow good management in the context of corporate use.

example: I am the administrator and my client wants to view logs or take x action

In this case, allowing a user to have to go through the main administration group is a significant point of weakness.

    The UI is not client-capable. This function was not planned from the outset as it is not required in the area of application for which OMV is intended.

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!

Register Yourself Login