Creating a VMware Read-Only User with Required Permissions
The following procedure provides the steps for creating and configuring a vSphere user with the necessary permissions for Virtualization Manager data collection access.
Note:
Permissions can be granted to an existing local account or domain/AD user. The following VMware user-creation steps are required only if you do not want to grant permissions to an existing user.
Create a new vCenter user to be used with IT Analytics. For the purpose of the examples in this document, we'll name the user .
Log in to vSphere with Administrator credentials to create a user with new permissions.
In the Home page (Alt+Home), click under the heading.
In the Roles window, right-click on and select .
Name the role .
Right-click on the Role you just created---- and select .
The only permission that is required beyond the Read-Only role is Browse Datastore and View VM storage policies. Select , click View VM storage policies and then click .
At the top of the vSphere window, select > > .
At the left of the vSphere window, right-click on the Root of the tree--in this example, esxvsphere--and then select .
In the Assign Permissions window, under Assigned Role, select and under Users and Groups, add the user that you created and click .
Once the user has been added, you should see it listed under the tab.
Now you are ready to add the user to the IT Analytics Portal. Be sure to enter the user name exactly as it is displayed in the Permissions tab (it is case sensitive). If you are using a Domain account, also include the Domain in the User ID field (for example: domain.com\aptare).
