Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED How to limit reseller's access to DNS

Discussion in 'General Discussion' started by jndawson, Dec 6, 2016.

Tags:
  1. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    202
    Likes Received:
    20
    Trophy Points:
    18
    Location:
    Western US
    cPanel Access Level:
    DataCenter Provider
    We are setting up a reseller on one of our WHM/cPanel boxes and have restricted access to DNS in the reseller's privileges (DNS add/edit/park/remove all unchecked), and no access to DNS clustering. However, when logged in as the reseller, there is unfettered access to all the DNS functions, including the clustering functions. If it was only access to the customer's domains, there wouldn't be any issues.

    Is restricting access not possible? We don't want the headache of exposing several thousand domain zones.
     
    #1 jndawson, Dec 6, 2016
  2. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,569
    Likes Received:
    45
    Trophy Points:
    308
    cPanel Access Level:
    Root Administrator
    Hello, I'm sorry you're having trouble getting this to work. To figure out what is happening, please provide the following information:

    1. Version of cPanel & WHM you are using
    2. A list of all the privileges assigned to the reseller (you can find an easy to paste list in /var/cpanel/resellers)

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelKenneth, Dec 7, 2016
  3. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    202
    Likes Received:
    20
    Trophy Points:
    18
    Location:
    Western US
    cPanel Access Level:
    DataCenter Provider
    1. v.60.0.26
    2. <reseller's account>:add-pkg,all,create-acct,disallow-shell,edit-account,edit-mx,edit-pkg,kill-acct,limit-bandwidth,list-accts,mailcheck,news,passwd,quota,rearrange-accts,resftp,restart,show-bandwidth,software-ConfigServer-csf,stats,status,suspend-acct,thirdparty,upgrade-account,viewglobalpackages

    Note that 'edit-mx' is the only dns-related privilege. Does that over ride the other dns-specific settings?
     
    #3 jndawson, Dec 8, 2016
  4. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,569
    Likes Received:
    45
    Trophy Points:
    308
    cPanel Access Level:
    Root Administrator
    The reseller has the all privilege. That grants full access to the entire server through WHM. It is not possible to assign the all privilege, then reduce privileges by unchecking boxes. You need to remove the all privilege to restrict access to functionality.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelKenneth, Dec 8, 2016
  5. jndawson

    jndawson Well-Known Member

    Joined:
    Aug 27, 2014
    Messages:
    202
    Likes Received:
    20
    Trophy Points:
    18
    Location:
    Western US
    cPanel Access Level:
    DataCenter Provider
    Thanks - that was it.
     
    #5 jndawson, Dec 8, 2016
    cPanelMichael likes this.
(You must log in or sign up to post here.)
Loading...
Similar Threads - limit reseller's access
  1. GemStoneGhost

    PHP Memory Limit

    GemStoneGhost, Dec 10, 2018 at 6:22 AM, in forum: Workarounds and Optimization
    Replies:
    1
    Views:
    63
    cPanelLauren
    Dec 12, 2018 at 12:59 PM
  2. kjavitz

    Limit Client Features But Not Root

    kjavitz, Dec 8, 2018 at 10:37 PM, in forum: General Discussion
    Replies:
    1
    Views:
    125
    cPanelLauren
    Dec 11, 2018 at 1:16 PM
  3. 000

    Limited ROOT access with SSH Key?

    000, Nov 29, 2018, in forum: Security
    Replies:
    4
    Views:
    262
    cPanelLauren
    Nov 29, 2018
  4. blackwidow02

    Track Delivery result exceeds reportable limit

    blackwidow02, Nov 22, 2018, in forum: E-mail Discussion
    Replies:
    6
    Views:
    167
    blackwidow02
    Nov 23, 2018
  5. mehdix92

    SOLVED [CPANEL-23931] The system failed to execute the system call setrlimit error

    mehdix92, Nov 16, 2018, in forum: General Discussion
    Replies:
    8
    Views:
    350
    cPanelMichael
    Nov 30, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice