Versions Compared

Old Version 2

changes.mady.by.user Clayton Weise

Saved on

compared with

New Version 3

changes.mady.by.user Clayton Weise

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

CloudStack has a fairly simplistic permissions hierarchy. There are domains, accounts, projects, and users.

Domains

Domains are, more or less, the equivalent of an organizational unit. Domains (generally) don't own resources, but they can impose resource limits upon all accounts held within them. Domains can house projects and accounts, but domains don't really own any instances, volumes, or other resources on their own. A domain is basically a container for other things which can own resources such as instances, volumes, networks, snapshots, templates, etc. Domains must be unique to their parent (ROOT/dom1, ROOT/dom2, etc), however they can repeat if they are a child of another domain (ROOT/dom1/sub1 and ROOT/dom2/sub1 is acceptable even though "sub1" is not unique, it is unique to its parent).

...