Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

Creating a role and assigning virtual machine creation and management privileges to a Domain or Local User/Group

Purpose

This article provides steps to create a role and assign the privileges necessary for a Domain or Local User/Group to create, configure, and manage a virtual machine.

Resolution

To create a role and assign the necessary privileges:

  1. Open a vSphere Client connection to the vCenter Server.
  2. Click Home > Administration > Roles > Add Role.
  3. Give the new role a name, then select these Privileges:
    • Datastore
      • Allocate space
      • Browse datastore

    • Host
      • Local operations
      • Create virtual machine
      • Delete virtual machine
      • Manage user groups
      • Reconfigure virtual machine

    • Resource
      • Assign virtual machine to resource pool

    • Virtual Machine

      Note      : Select only Virtual Machine to allocate all Virtual Machine privileges.

  4. Add the permission at the highest level and set to propagate the permissions.

    Alternatively, set specific levels within vCenter Server:
    1. Right-click the Inventory object, then click the Permissions tab.
    2. Right-click on a blank area in the Permissions table, then click Add Permissions.
    3. Click Add and in the Domain field, select the Active directory choose the user or group.

      Note      : Leaving the Domain entry as (server) shows the vCenter Server's local Windows accounts.

    4. Choose the role from the Assigned Role dropdown.
    5. Deselect Propagate to Child Objects.

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
Actions
KB: