Hello, I’ve encountered multiple Problems regarding user restrictions:
If I am running the Deadline remote connection Server and someone is having their repository set to a local repository in the launcher icon. Then switches to a “remote connection” in the change repository dialog, then launches the monitor, it creates a new user, is then part of the “everyone” group -so far so … okay. One could ask “Why is a very restricted user able to create new users” - but okay.
Now even though the “everyone” group does not allow to switch the user for that repository (everything is “red” except ‘switch repository’ for launcher and monitor menu), the one who is connected via remote connection is still able to run deadlinecommand with the -changeuser flag for that remote repository and gets the dialog for changing users. Now even though all users in that dialog have passwords set, he is able to change users freely without password authentication even though it’s not allowed for “everyone”.
Is the user system not meant to be used like that?
Is it enough to set the passwords of users in the “manage users” panel under “Web Service Authentication” or am I overseeing a dialog here?