Hi All:
I have a composite blueprint below. Right now my problem is: for the user to consume the blueprint, it must have ‘Application Architecture’ role, which I think is the ‘View Composite …..’ permission matters.
But if I give user this role, he will be able to see the ‘Design’ tab. Otherwise, he will see the 403 error when provision from this blueprint.
Did anyone have similar concern before? How can I manage the entitlements to avoid this?
Thanks a lot in advance.
Is "Customize VM" the only XaaS component it the Blueprint? If it is, could you remove it or create a new blueprint without XaaS components on it and try again without Application Architecture role?
D.
Thanks bdamian.
basically, besides JumpBox, all the other 3 are XAAS blueprints. is there anything you may think cause the issue?
Thanks again.
The vRealize Orchestrator registration under Administration > vRO server, is per session or per user?
If is per session, could you try to set it per user and use vRO administration credentials for a test?
Thanks bdamian. i am running vra7.5, but seems like i don't have these option.
Ok, "Basic" is the per user option. So, is not the problem this case. I will try to reproduce this and, if I found something, I'll let you know.
Thank you very much
I've created a similar blueprint with a vCetner VM and a XaaS component linked to the VM:
I've also created a new business group with his reservation and add 1 user with no additional role.
The blueprint is in a new Service, the XaaS Blueprint is in no Service but marked as a Component.
The blueprint worked just fine so I assume is not a bug. I've tested on vRA 7.3.1.
Something in your configuration must be wrong. Is there any error in Administration > Events > Event Log or Infrastructure > Monitoring > Log related to the blueprint execution?
D.