I put a "Get Virtual Machines by Name" workflow using a pre-set attribute for the string VM name before the Change Credential.  This works and I get around the VcPlugin issue...thanks for that.  However, the goal of "Change Credential" is not working.  If I output "Server.getCurrentLdapUser().displayName" after the change credential, I get the correct user (the service account with full perms to vCenter).  For the next schema item, when I do the desired "Get Virtual Machines by Name", it still appears to use the credentials of the user that initiated the request.  The goal is to allow any Domain User to make a change (done by a service account) even if they don't have vCenter permissions.

What is the type of the next schema item ?

I am surprised the credential is changed back, it used to stay there. Either it is a bug or you do something I did not experience.

I may have another work around for you.

• Create an attribute of type credential, set ti to your system account
• put everything that need to be run as the system account in a separate workflow.
• From your main workflow, call this workflow as a nested workflow, click on this nested workflow, then on connection info. Then use Dynamic, select your credential.

This should allow to run the nested workflow as a separate user.

Thanks again.  Before I tried this, I tried changing the vCenter 5.1.1 connection strategy (in vCO Configuration) from "Session Per User" to "Share a unique session".  I entered the service account credentials and then bounced the box.  This worked!  I don't fully understand the difference between credentials used in the workflow and the credentials used for the vCenter session in the Configuration.  However, it works as desired... thanks again for the quick help.

I assumed you wanted to run the workflow with two different credentials. If I had understood every single workflows must run under a service credential I would definitely asked you to set the plug-in to shared session.

Session per user does authenticate in vCenter with the user log in vCO.

Has anyone had an issue where the change credentials provides different results?  Without editing my schema, users may launch the workflow with identical information and have it succeed or fail.  It seems to typically fail the first time for a non-admin user and then work later on when they try again.  I am using a simple "Get virtual machines by name".  I change to a service account before that workflow item and get mixed results of the result from the "Get virtual machines by name".  It sometimes works and returns the VM and sometimes returns a blank array.

I'm using vRealize Orchestrator 6.0.3 and have the same issue. But unfortunatly I'm not able to switch between 'Shared session' and 'session per user'. Due to the behavior I suggest, that I'm using 'session per user' but want to use 'shared session'. Can anyone tell me, how i change this setting in vRealize Orchestrator 6.0.3?

Thanks

Roland

Does some error appear in server.log when you execute the workflow.