Problem: AD accounts now have read only permission after logging into vSphere (using AD accounts).
Cause: Attempted to create a non-AD account, that could log into vSphere with only read permissions.
Good News:
VMware Environment:
We've never configured any permissions before for vSphere logins. Once vSphere was installed way back when, we've always just accessed it with our AD accounts (never set any permissions/groups). I don't suppose there is a way to remove this vSphere read only permission that's applying to everything?
This is a strange one. You seem to have done everything correctly. It may be a strange bug. Could you attach a screenshot if you don't mind.
Don't panic about the problem. It is an easy fix.
You will need to make changes to your database. I wouldn't touch a database without a backup, so you have been warned.
Just to be safe shutdown vCenter while you are modifying the DB.
There should be a table called "VPX_ACCESS". You need to change the ROLE_ID of your administrator account from -2 to -1. And I believe ENTITY_ID should be 1.
Easy.
This is a strange one. You seem to have done everything correctly. It may be a strange bug. Could you attach a screenshot if you don't mind.
Don't panic about the problem. It is an easy fix.
You will need to make changes to your database. I wouldn't touch a database without a backup, so you have been warned.
Just to be safe shutdown vCenter while you are modifying the DB.
There should be a table called "VPX_ACCESS". You need to change the ROLE_ID of your administrator account from -2 to -1. And I believe ENTITY_ID should be 1.
Easy.
You saved my bacon, thank you!
Message was edited by: adminatater