TNSR CLI access denied for basic config-related commands
I just did a fresh install of TNSR 4.18.0-305 on KVM and cannot seem to run any configuration commands in the Clixon CLI. The required services are running via
tnsrctl status(vpp, clixon-backend), but I keep getting the following error for almost any command run in the TNSR/Clixon CLI:
Get configuration: application access-denied default deny
Commands tried that should show something:
show configuration show interface
It seems there's a permission that needs to be tweaked but I'm not finding anything in the docs, and other seemingly intuitive commands around
aclseem to not be helpful. Any insight on what config needs to be tweaked to get out of this state would be greatly appreciated!
@litmaj0r said in TNSR CLI access denied for basic config-related commands:
First, what is TNSR 4.18.0-305? The current tnsr version is 21.07.1-1. (Ah you're talking about the underlying CentOS kernel version).
Are you logging in as the tnsr user? If not, give that a shot. Else run clixon_cli under sudo.
@derelict Derf, yep I mentioned the kernel version. The TNSR version is
sudo clixon_cliworked to get the commands operational (and that's using my custom user, not
[Now I see the part of the docs that caused this issue, since I created a custom user during install:
Default TNSR Permissions where only
tnsrusers are allowed into the CLI.
For others' reference, here's how to fix that (once in the CLI via
configure t nacm group admin member USERNAME exit configuration copy running startup exit
More info on NACM config here in the docs
After that, just entering
sudowill work just fine...