We are trying to allow a user to access VM folder in VROPS 6.6. We created role, and user group then we added the user to the user group and restrict user to view only VM folder.
However when we login to VROPS with the new user account. The user is able to see all the objects. We dont want user to see all the objects just the VM folder and VMs under it.
It looks like user automatically become part of everyone group in the VROPS and has access to all the objects in read only.
anyone has any idea how i can accomplish this?
Please refer to the doc: Roles and Previleges: https://pubs.vmware.com/vrealizeoperationsmanager-6/index.jsp?topic=%2Fcom.vmware.vcom.core.doc%2FGU.... User Scenario: Manage User Access Control : http://pubs.vmware.com/vrealizeoperationsmanager-6/index.jsp#com.vmware.vcom.core.doc/GUID-299D5320-...
First we created a Role with restricted permissions.
Then we created user groups and set the specific permissions to the group
( e.g. going down to "vsphere hosts and clusters" and following the branch
to the VM folder ).