Hi. Does a user actually need to be a Security Administrator role in NSX to assign Security tags? We rather not give that permission to users to simply add that tag. Am I am missing something? Thanks,,,
If this is your requirement, then you can rely on dynamic membership security groups. This way your VMs will be members of these groups automatically based on a certain criteria such as OS name, VM name, .... This will serve the requirement for existing and newly created VMs as well.