Configuring role-based access control
vSphere environments use role-based access control (RBAC) to provide access and permissions on vCenter inventory objects. Not everyone who accesses the vCenter Server should be set up as an administrator. Use roles and permissions to assign only the required permissions that a user, or group of users, needs in order to perform actions in the vSphere environment.
How to do it…
To configure RBAC in a vSphere environment, perform the following steps:
- Create a role with the privilege required. Preconfigured roles include Administrator, Read-Only, and No Access. Several sample roles are included, which can be cloned or edited.
- Create or edit roles to provide only the necessary privileges required to perform the roles' function, for example, a role that only provides console access to a virtual machine.
- Add permissions to vSphere inventory objects by assigning a user and role to the object, for example, allowing a specific user to access the console...