VMware Cloud Community
andvm
Hot Shot
Hot Shot
‎03-19-2020 04:04 AM

Change VM network permission to single VM

Hi,

I followed KB1020934 and point 9 says to assign permission at data centre level.

I want to restrict this to a single VM

in the data center there are many clusters/host and this would allow permission to all which I do not want.

please advice

thanks

Reply
0 Kudos
6 Replies
Alex_Romeo
Leadership
Leadership
‎03-19-2020 04:22 AM

Hi,

in this post they explain how to proceed:

Permissions for a user to change network settings

ARomeo

Blog: https://www.aleadmin.it/
Reply
0 Kudos
andvm
Hot Shot
Hot Shot
‎03-19-2020 04:36 AM

I need to give read only access to all clusters/host to same user/group so I can not specify “no access”

Any suggestion how to achieve this?

why permission has to be set to datacenter level if I just want it for a specific VM?

Reply
0 Kudos
Alex_Romeo
Leadership
Leadership
‎03-19-2020 03:05 PM

HI,

You can create a role and assign to a group. Check out this article:

Follow these steps to assign vSphere permissions and roles

ARomeo

Blog: https://www.aleadmin.it/
Reply
0 Kudos
andvm
Hot Shot
Hot Shot
‎03-22-2020 02:35 AM

yes but issue remains the same, you cannot assign it to the VM only.

I managed by:

Set at DC level allowing network changes

Set at Cluster level with RO

Set at Folder level with RO

Set at VM level

Reply
0 Kudos
scott28tt
VMware Employee
VMware Employee
‎03-22-2020 08:18 AM

What is the specific end result you are looking for, in terms of what you WANT and DO NOT WANT the user to be able to do?


-------------------------------------------------------------------------------------------------------------------------------------------------------------

Although I am a VMware employee I contribute to VMware Communities voluntarily (ie. not in any official capacity)
VMware Training & Certification blog
Reply
0 Kudos
NathanosBlightc
Commander
Commander
‎03-22-2020 09:33 AM

Set at DC level allowing network changes

What did you exactly need to do ?! If you want to provide networking permissions for vSphere standard networking, it's better to set on host or cluster level ... why do you set it on datacenter level?!

If you need to set the permissions for a specific VM belongs to a cluster, create a Folder for that VM, and after creating your role, assign it to the folder level.

For other read-only access, what do you need clearly?

Please mark my comment as the Correct Answer if this solution resolved your problem
Reply
0 Kudos