I would need to provide some basic VMs access to my colleagues. Is there a best practices document for vSphere 6?
They would need:
- view console
- reboot/reset
- change VM networking options
This can be achieved using Virtual Machine User role, I guess.
Each person will have corresponding Active Directory group (security, domain local type).
Now the hard part - each person will have a lot of VMs and access changes frequently.
I would rather not apply permissions at VM level as it is cumbersome.
I cannot not apply permissions at VM Folder level as VM Folders are used to group VMs by their purpose (Production, Test, Service, Networking, ProjectA, ProjectB, etc).
Is there a way to group VMs somehow (by tag?) and assign access permission to that group?