Guest Network Permissions
From Apache CloudStack 4.17.0.0, guest Networks can be shared to other accounts in the same domain by managing Network permissions.
The following Networks can be shared:
L2 Networks not in Project
Isolated Networks not in Project
Shared Networks with scope is Account
Adding a Network permission
Log in to the CloudStack UI as an administrator or end user.
In the left navigation, choose Network.
In the Select view, select Guest Networks.
Select the guest Network you want to work with.
Click the Network Permissions tab.
All the Network permissions that you have created for the Network are listed in the page.
Click Add Network Permission icon. Provide the following information:
Account: The name of the accounts this Network will be shared to.
Project. The name of the projects this Network will be shared to.
Click OK.
Note
The accounts/projects are permitted to create Instances on the Network. However, they are not permitted to restart and update Network, and modify Network rules (e.g. firewall, static nat, load balancer, port forwarding).
Removing a Network permission
To remove a Network permission, click the Delete Network Permission icon of the Network permission.
Resetting Network permissions
CloudStack provides the ability to reset the Network permissions of a Network. All Network permissions will be removed. To reset the Network permission, click the Reset Network Permissions button on the page.