VMware

Assign User Global Permissions using vSphere Client

Assign User Global Permissions

In this blog, I will assign user global permission to FQDN active directory administrator user account to access VMware vCenter instead of [email protected] account.
1- Log in with your VMware vSphere Client, typing vCenter username and password.

vmware vsphere client

2- Select the menu tab and click on administrator option.

vsphere client vcenter menu

3- On your left-hand side under Access Control, select Global Permission and click the + icon.

vsphere global permissions

4- From the Domain drop-down box, select an active directory domain (xpertstec.local).

vsphere add permission

5- From the User/Group option, type administrator and then select administrator.

vsphere global permissions root

6- Select Administrator under role.

vsphere global permissions root

7- Choose Propagate to children checkbox and then click OK.

vsphere global permissions change role

8- Now you can see FQDN successfully added, so select [email protected] and then click Logout.

vcenter global permissions

9- Type local domain username, password and then click login.

vmware vsphere client

10- Login with the active directory domain administrator account.

vmware vcenter vsphere client

How to assign user read only permissions

I already created Active Directory account user name Jamil to assign permissions on vSphere objects using this same account. Here I will set read-only permission for the user name Jamil. Or you can allow Jamil users to perform basic tasks such as powering on or rebooting a virtual machine.
1- Login with your VMware vSphere Client, select the menu tab, and click on the administrator option.

vsphere client vcenter menu

2- On your left-hand side under Access Control, select Global Permission and click the + icon.

vcenter global permissions

3- From the Domain drop-down box, select an active directory domain (xpertstec.local).

vsphere add permission

4- From the User/Group option, type a user name (for example Jamil) the one you want to give read-only permission

vsphere global permissions root

5- Select Read-only under role.

vsphere global permissions root

6- Choose Propagate to children checkbox and then click OK.

vsphere global permissions change role

7- Now you can see the Read-only user successfully added, so select [email protected] and then click Logout.

vcenter global permissions

8- Type local domain username, password and then click login.

vmware vsphere client

9- Login with the read only account, and you can check the VM menu hidden

vmware vsphere client vm

For more details please visit VMware

Jamil Parvez

Jamil Pervez works as a Network Administrator, based in Kuwait with a Primary focus on Microsoft technologies. Microsoft Certified MCSE, MCTP, MCITP, CCNP, CCIP, CCVP with 20 years of experience in administering Windows Servers, Exchange, VMWare, Veeam B&R, Veritas BackupExec.

Related Articles

2 Comments

Leave a Reply

Back to top button