VMware Cloud Community

How to hide objects (vm's & datastores) from certain users yet deploy OVA's

Currently using VCSA 6.0 U1 and wish to limit what specific users can see eg only see assigned resource pool, vm folder, datastore and portgroup so that they can build VM's etc eg the whole Coke/Pepsi scenario. I have done this by creating a user and assigning it administrator role to those specific objects but when going to deploy an OVA it reports "A vCenter Server resource is missing or invalid". As per https://kb.vmware.com/kb/2105932 certain permissions are required to deploy OVA but if I create a role with only the required permissions and apply it for that user to the VC or DC then the user can deploy the OVA but see's all objects, thou of course options are greyed out, but defeats my goal of a user only able to see objects I want them to see. How can this be overcome?

Thank you for your time and looking forward to your suggestions.

0 Kudos
0 Replies