vSphere permissions
Single Sign-On provides authentication, but once authenticated vCenter Server defines the scope of access. Permissions are defined within the vCenter Server inventory hierarchy and consist of three things:
- User/Group: This specifies who has access
- Role: This specifies the user or group's privileges
- Object: This specifies where the user or group can execute their privileges
In order to have permissions, all three of these must be defined.
Defining a custom role
There are three built-in roles: administrator, no access, and read-only. Quite a few sample roles have also been created and are available for use. Custom roles may also be created to fit an organization's needs. To create a custom role:
- Log into the vSphere Web Client as an ...
Get Learning VMware vSphere now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.