Guest Network Permissions

From Apache CloudStack 4.17.0.0, guest Networks can be shared to other accounts in the same domain by managing Network permissions.

The following Networks can be shared:

  1. L2 Networks not in Project

  2. Isolated Networks not in Project

  3. Shared Networks with scope is Account

Adding a Network permission

  1. Log in to the CloudStack UI as an administrator or end user.

  2. In the left navigation, choose Network.

  3. In the Select view, select Guest Networks.

  4. Select the guest Network you want to work with.

  5. Click the Network Permissions tab.

    All the Network permissions that you have created for the Network are listed in the page. network permissions.

  6. Click Add Network Permission icon. Provide the following information:

    • Account: The name of the accounts this Network will be shared to.

    • Project. The name of the projects this Network will be shared to.

  7. Click OK.

    Note

    The accounts/projects are permitted to create Instances on the Network. However, they are not permitted to restart and update Network, and modify Network rules (e.g. firewall, static nat, load balancer, port forwarding).

Removing a Network permission

To remove a Network permission, click the Delete Network Permission icon of the Network permission. button to delete.

Resetting Network permissions

CloudStack provides the ability to reset the Network permissions of a Network. All Network permissions will be removed. To reset the Network permission, click the Reset Network Permissions button on the page.