Page Comparison

The following table describes The following table describes all the privileges in the cloud platform.

...

Section

Manage virtual ________APPLIBVMCOSTCODEMANAGE_PRICING_CREDENTIALSEVENTLOG_VIEW_ENTERPRISE XACTION_PLAN_MANAGE

GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Home privileges
List enterprises within scope	ENTERPRISE_ENUMERATE	This privilege allows a user to view the list of enterprises within scope and to view statistics for those enterprises	X
Allow user to switch enterprise	ENTERPRISE_ADMINISTER_ALL	This privilege allows a user to change to another enterprise, in order to administer it, by clicking the switch user button in the Enterprises list	X
Display enterprise statistics	ENTERPRISE_RESOURCE_SUMMARY_ENT	This privilege allows a user to filter statistics by enterprise to display the resources used by an enterprise in the enterprise resources panel	X	X		X
Display enterprise limits in statistics	ENTERPRISE_SHOW_STATS_LIMITS	This privilege allows a user to view enterprise limits in addition to resources used in the enterprise resources panel if the user has the Display enterprise statistics privilege	X		X	X
View bills	BILLS_VIEW	This privilege allows a user to view bills and related widgets	X	X
Manage bills	BILLS_MANAGE	This privilege allows a user to manage bills	X	X
Infrastructure Services XaaS privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access infrastructure view and private DCs	PHYS_DC_ENUMERATE	This privilege allows a user to access the Infrastructure view and list the physical datacenters	X	Use default services	XAAS_USE_DEFAULT	Use default services	X	X				Display resource usage panel	PHYS_DC_RETRIEVE_RESOURCE_USAGE
Manage default services	XAAS_MANAGE_DEFAULT	This privilege allows a user to view the resource usage panel in the Infrastructure viewmanage default services	X	X				Manage datacenter
PHYS_DC_MANAGEUse enterprise services	XAAS_USE_ENTERPRISE	This privilege allows a user to manage datacenters (add, edit and delete). Without it, the datacenter's properties will be read onlyuse enterprise services	X	X	X	X
View datacenter details	PHYS_DC_RETRIEVE_DETAILSManage enterprise services	XAAS_MANAGE_ENTERPRISE	This privilege allows a user to go inside a datacenter and view its details (racks, physical machines, networks, storage and allocation rules)manage enterprise services	X	X				Manage datacenter infrastructure elements
PHYS_DC_ALLOW_MODIFY_SERVERSUse user services	XAAS_USE_USER	This privilege allows a user to manage infrastructure elements (add, edit and delete racks and physical machines)use user services	X	X	X	X
Manage network elementsuser services	PHYSXAAS_DC_ALLOW_MODIFY_NETWORKMANAGE_USER	This privilege allows a user to manage network elements (add, edit and delete public networks)user services	X	X	X			Manage storage elements
PHYS_DC_ALLOW_MODIFY_STORAGEUse datacenter services	XAAS_USE_DATACENTER	This privilege allows a user to manage storage elements (add, edit and delete storage devices, pools, tiers and volumes)use datacenter services	X	X	X	X
Manage allocation rulesdatacenter services	PHYSXAAS_DC_ALLOW_MODIFY_ALLOCATIONMANAGE_DATACENTER	This privilege allows a user to manage allocation rules (add and delete rules)datacenter services	X	X				Manage datacenter backup configuration
PHYS_DC_ALLOW_BACKUP_CONFIGUse public cloud region services	XAAS_USE_PUBLIC_CLOUD_REGION	This privilege allows a user to manage backup configuration at datacenter leveluse public cloud region services	X	X	X	X
Manage devicesMANAGE_DEVICESpublic cloud region services	XAAS_MANAGE_PUBLIC_CLOUD_REGION	This privilege allows a user to setup networking devices (Neutron)manage public cloud region services	X	X				Manage public cloud regions
PCR_MANAGEUse location services	XAAS_USE_LOCATION	This privilege allows a user to manage public cloud regions (add, edit and delete). Without it, the public cloud region's properties will be read onlyuse location services	X	X	X	X
Access infrastructure view and PCRs	PCR_ENUMERATEManage location services	XAAS_MANAGE_LOCATION	This privilege allows a user to access the Infrastructure view and list the public cloud regionsmanage location services	X	X				View public cloud region details
PCR_RETRIEVE_DETAILSUse virtual datacenter services	XAAS_USE_VIRTUAL_DATACENTER	This privilege allows a user to go inside a public cloud region and view its details (virtual machines and hardware profiles)use virtual datacenter services	X	X	X	X
Manage hardware profile types and familyvirtual datacenter services	XAAS_MANAGE_HARDWARE_PROFILE_TYPE_AND_FAMILYVIRTUAL_DATACENTER	This privilege allows the a user to manage hardware profile types and family (add, edit and delete)virtual datacenter services	X	X	X			View and manage protection managers
MANAGE_DRAAS_CONFIGUse virtual appliance services	XAAS_USE_VIRTUAL_APPLIANCE	This privilege allows the user to manage protection managers for disaster recovery (create, edit, and delete)a user to use virtual appliance services	X	X	X	X			Virtual datacenters privileges
Manage virtual appliance services	XAAS_MANAGE_VIRTUAL_APPLIANCE	This privilege allows a user to manage virtual appliance services	X	X	X
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access virtual datacenters view	VDC_ENUMERATEUse virtual machine services	XAAS_USE_VIRTUAL_MACHINE	This privilege allows a user to use virtual machine services	X	X	X	X
Manage virtual machine services	XAAS_MANAGE_VIRTUAL_MACHINE	This privilege allows a user to access the Virtual Datacenters viewmanage virtual machine services	X	X	X	X		Manage virtual datacenters
VDC_MANAGERun actions on usable services	XAAS_EXECUTE	This privilege allows a user to manage virtual datacenters (add, edit and delete). Without it, the virtual datacenter details are read onlyrun actions on the services they can use	X	X	X
Manage virtual appliances	VDC_MANAGE_VAPP	This privilege allows a user to manage virtual appliances (add, edit and delete)	X	X	X
Infrastructure privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access infrastructure view and private DCs	PHYS_DC_ENUMERATE	This privilege allows a user to access the Infrastructure view and list the physical datacenters	X
Display resource usage panel	PHYS_DC_RETRIEVE_RESOURCE_USAGE	This privilege allows a user to view the resource usage panel in the Infrastructure view	X
Manage datacenter	PHYS_DC_MANAGE	This privilege allows a user to manage datacenters (add, edit and delete). Without it, the datacenter's properties will be read only	X
View datacenter details	PHYS_DC_RETRIEVE_DETAILS	This privilege allows a user to go inside a datacenter and view its details (racks, physical machines, networks, storage and allocation rules)	X
Manage datacenter infrastructure elements	PHYS_DC_ALLOW_MODIFY_SERVERS	This privilege allows a user to manage infrastructure elements (add, edit and delete racks and physical machines)	X
Manage network elements	PHYS_DC_ALLOW_MODIFY_NETWORK	This privilege allows a user to manage network elements (add, edit and delete public networks)	X
Manage storage elements	PHYS_DC_ALLOW_MODIFY_STORAGE	This privilege allows a user to manage storage elements (add, edit and delete storage devices, pools, tiers and volumes)	X
Manage allocation rules	PHYS_DC_ALLOW_MODIFY_ALLOCATION	This privilege allows a user to manage allocation rules (add and delete rules)	X
Manage datacenter backup configuration	PHYS_DC_ALLOW_BACKUP_CONFIG	This privilege allows a user to manage backup configuration at datacenter level	X
Manage devices	MANAGE_DEVICES	This privilege allows a user to setup networking devices (Neutron)	X
Manage public cloud regions	PCR_MANAGE	This privilege allows a user to manage public cloud regions (add, edit and delete). Without it, the public cloud region's properties will be read only	X
Access infrastructure view and PCRs	PCR_ENUMERATE	This privilege allows a user to access the Infrastructure view and list the public cloud regions	X
View public cloud region details	PCR_RETRIEVE_DETAILS	This privilege allows a user to go inside a public cloud region and view its details (virtual machines and hardware profiles)	X
Manage hardware profile types and family	MANAGE_HARDWARE_PROFILE_TYPE_AND_FAMILY	This privilege allows the user to manage hardware profile types and family (add, edit and delete)	X
View and manage protection managers	MANAGE_DRAAS_CONFIG	This privilege allows the user to manage protection managers for disaster recovery (create, edit, and delete)	X
Virtual datacenters privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access virtual datacenters view	VDC_ENUMERATE	This privilege allows a user to access the Virtual Datacenters view	X	X	X	X
Manage virtual datacenters	VDC_MANAGE	This privilege allows a user to manage virtual datacenters (add, edit and delete). Without it, the virtual datacenter details are read only	X	X
Manage virtual appliances	VDC_MANAGE_VAPP	This privilege allows a user to manage virtual appliances (add, edit and delete)	X	X	X
Manage virtual network elements	VDC_MANAGE_NETWORK	This privilege allows a user to manage private and public networks (add, edit and delete)	X	X
Manage virtual storage elements	VDC_MANAGE_STORAGE	This privilege allows a user to manage storage volumes (add, edit and delete)	X	X
Manage floating IPs	MANAGE_FLOATINGIPS	This privilege allows a user to manage floating IPs (add and delete)	X	X
Manage firewalls	MANAGE_FIREWALLS	This privilege allows a user to manage firewalls (add, edit and delete) for virtual datacenters	X	X
Manage load balancers	MANAGE_LOADBALANCERS	This privilege allows a user to manage load balancers (add, edit and delete) for virtual datacenters	X	X
Manage virtual storage controller	VDC_MANAGE_STORAGE_CONTROLLER	This privilege allows a user to manage the controller of storage volumes	X	X	X
Manage public IPs	MANAGE_PUBLICIPS	This privilege allows a user to manage public IPs for private virtual datacenters	X	X	X
Modify allocation when attaching a disk	VDC_MANAGE_STORAGE_DISK_ALLOCATION	This privilege allows a user to modify the allocation of disks before they are deployed to the hypervisor and specify allocation when attaching a new disk and it is not possible once the VM is deployed (disk already created/copied)	X	X
Manage NAT IPs	MANAGE_NATIPS	This privilege allows a user to manage NAT IPs for private virtual datacenters	X	X	X
Manage VPNs	MANAGE_VPN	This privilege allows a user to manage VPNs	X	X
Manage classic firewalls	MANAGE_CLASSIC_FIREWALLS	This privilege allows a user to manage classic firewalls (edit and delete) for devices	X
Manage private IP reservations	MANAGE_PRIVATEIP_RESERVATION	This privilege allows a user to manage private IP reservations	X
Manage default virtual datacenter firewall	MANAGE_DEFAULT_FIREWALL	This privilege allows a user to define a default virtual datacenter firewall	X	X
Manage enterprise datacenter default roles	VDC_MANAGE_DEFAULT_ROLE	This privilege allows a user to manage enterprise datacenter default roles (creation/edition)	X	X
Access public network tab	VDC_VIEW_PUBLIC_NETWORK	This privilege gives the user access to public network resources in virtual infrastructure	X	X	X	X
Manage public network elements	VDC_MANAGE_PUBLIC_NETWORK	This privilege allows a user to manage public network resources in virtual infrastructure	X	X	X	X
Access external network tab	VDC_VIEW_EXTERNAL_NETWORK	This privilege gives the user access to external network resources in virtual infrastructure	X	X	X	X
Manage external network elements	VDC_MANAGE_EXTERNAL_NETWORK	This privilege allows a user to manage external network resources in virtual infrastructure	X	X	X	X
Manage availability sets	MANAGE_AVAILABILITY_SET	This privilege allows a user to manage availability sets (add and delete) for virtual datacenters	X	X
Assign availability set to VM	ASSIGN_AVAILABILITY_SET	This privilege allows a user to assign availability sets to virtual machine (create and edit VM)	X	X
Manage the bandwidth limit for NAT	MANAGE_BANDWIDTHLIMIT_NAT	This privilege allows a user to manage the bandwidth limit for NAT	X	X
Manage the bandwidth limit for public IPs	MANAGE_BANDWIDTHLIMIT_PUBLIC	This privilege allows a user to manage the bandwidth limit for public IPs	X	X
Manage resource groups	MANAGE_RESOURCE_GROUP	This privilege allows a user to create resource groups	X	X	X	X
Delete resource groups	DELETE_RESOURCE_GROUP	This privilege allows a user to delete resource groups	X	X	X	X
Manage global networks	MANAGE_GLOBAL_NETWORK	This privilege allows a user to manage global networks	X	X	X	X
Update private MAC IP	UPDATE_MAC_IP	This privilege allows a user to update private MAC IP	X
Virtual appliances privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Edit virtual appliance details	VAPP_CUSTOMISE_SETTINGS	This privilege allows a user to edit virtual appliance details (name, CPUs, etc.), go inside virtual appliances and view their details	X	X	X
Deploy and undeploy virtual appliances	VAPP_DEPLOY_UNDEPLOY	This privilege allows a user to deploy/undeploy virtual appliances	X	X	X
Perform virtual machine actions	VAPP_	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info	Edit virtual appliance details	VAPP_CUSTOMISE_SETTINGSPERFORM_ACTIONS	This privilege allows a user to perform virtual machine actions (power on/off, pause, reboot, remote access)	X	X	X
Manage persistent templates	VAPP_CREATE_STATEFUL	This privilege allows a user to edit virtual appliance details (name, CPUs, etc.), go inside virtual appliances and view their detailsmanage persistent virtual machine templates (create in VApp; create, edit and delete in virtual datacenter)	X	X	X		Deploy
and undeploy virtual appliancesCreate instance	VAPP_DEPLOYCREATE_UNDEPLOYINSTANCE	This privilege allows a user to deploy/undeploy virtual appliancescreate instance templates of a virtual machine within a virtual appliance	X	X	X
Perform Manage virtual machine actionshard disks	VAPPMANAGE_PERFORMHARD_ACTIONSDISKS	This privilege allows a user to perform access the virtual machine actions (power on/off, pause, reboot, remote accesshard disk tab and manage hard disks (add and delete)	X	X	X
Manage persistent templateslayers	VAPP_CREATEMANAGE_STATEFULLAYERS	This privilege allows a user to manage persistent virtual machine templates anti-affinity layers in virtual appliances (create in VApp; create, edit and delete in virtual datacenterlayers)	X	X	X		Create instance
Manage virtual machine backup configuration	VAPP_CREATEMANAGE_INSTANCEBACKUP	This privilege allows a user to create instance templates of a virtual machine within a virtual applianceaccess the backup configuration at virtual machine level and set the backup type and contents	X	X	X
Manage virtual machine hard disksMANAGE_HARD_DISKSbackup schedule	VAPP_DEFINE_BACKUP_INFO	This privilege allows a user to access the virtual machine hard disk tab and manage hard disks (add and delete)specify an additional option for backup configuration by setting backup dates and times	X	X
Manage layersworkflow tasks	VAPPWORKFLOW_MANAGE_LAYERSOVERRIDE	This privilege allows a user to manage anti-affinity layers in virtual appliances (create, edit and delete layers)start or cancel queued tasks if workflow is enabled	X	X	X
Manage virtual machine backup configurationDelete unknown virtual machines	VAPP_DELETE_MANAGEUNKNOWN_BACKUPVM	This privilege allows a user to access the backup configuration at virtual machine level and set the backup type and contentsdelete virtual machines in unknown state	X	X				Manage virtual machine backup schedule
VAPP_DEFINE_BACKUP_INFOAssign firewalls to virtual machines	ASSIGN_FIREWALLS	This privilege allows a user to specify an additional option for backup configuration by setting backup dates and timesassign already created firewalls to virtual machines	X	X
Manage workflow tasks	WORKFLOW_OVERRIDEAccess persistent templates view	VAPP_STATEFUL_VIEW	This privilege allows a user to start or cancel queued tasks if workflow is enabledaccess the persistent virtual machine templates view	X	X	X		Delete
unknown virtual machinesManage virtual machine backup disks	VAPP_DELETEMANAGE_UNKNOWNBACKUP_VMDISKS	This privilege allows a user to delete virtual machines in unknown statespecify disks and disk backup types (snapshot and complete)	X
Assign firewalls to virtual machinesload balancers	ASSIGN_FIREWALLSLOADBALANCERS	This privilege allows a user to assign already created firewalls to virtual machinesload balancers	X	X
Access persistent templates view	VAPP_STATEFUL_VIEWManage virtual machine metrics	USERS_ENABLE_DISABLE_VM_METRICS	This privilege allows a user to access the persistent virtual machine templates viewactivate monitoring of virtual machines	X	X	X
Manage virtual machine backup disks	VAPP_MANAGE_BACKUP_DISKSAccess metrics	USERS_SHOW_METRICS	This privilege allows a user to specify disks and disk backup types (snapshot and complete)manage monitoring	X	X	X	X
Assign load balancers	ASSIGN_LOADBALANCERSRestore virtual machine backups	VAPP_RESTORE_BACKUP	This privilege allows a user to assign load balancersrestore virtual machine backups	X	X
Manage virtual machine metrics	USERS_ENABLE_DISABLE_VM_METRICSProtect/unprotect virtual machines	VM_PROTECT_ACTION	This privilege allows a user to activate monitoring of virtual machinesprotect/unprotect a virtual machine	X	X	X
Access metrics	USERS_SHOW_METRICSConsume virtual appliance specs	CONSUME_VAPP_SPEC	This privilege allows a user to manage monitoringconsume virtual appliance specs	X	X	X	X
Restore Override virtual machine backupsconstraints	VAPPVM_EXCEED_RESTORECPU_BACKUPRAM	This privilege allows a user to restore virtual machine backupsallows a user to modify virtual machine CPU and RAM to values outside the maximum and minimum values defined in the virtual machine template	X	X
Protect/unprotect virtual machinesEdit virtual machine details	VM_PROTECTEDIT_CPU_ACTIONRAM	This privilege allows a user to protect/unprotect a edit virtual machine details (CPU and RAM)	X	X	X	X
Consume virtual appliance specs	CONSUME_VAPP_SPECRetrieve default template credentials	VM_CHECK_USER_PASSWORD	This privilege allows a user to consume virtual appliance specsretrieve the default user and password of a template	X	X			Override virtual machine constraints
Relocate a VM to a compatible host	VM_EXCEED_CPU_RAMRELOCATE	This privilege allows a user to modify virtual machine CPU and RAM to values outside the maximum and minimum values defined in the virtual machine templaterelocate a VM to a compatible host	X					Edit virtual machine details
VM_EDIT_CPU_RAMManage workflow for scaling groups	SCALING_GROUP_MANAGE_WORKFLOW	This privilege allows a user to edit virtual machine details (CPU and RAM)enable or disable workflow for scaling groups.	X	X	X		Retrieve default template credentials
Attach NICs in restricted networks to VMs	VM_CHECKATTACH_USER_PASSWORDNIC	This privilege allows a user to retrieve the default user and password of a templateattach NICs in restricted networks	X				Relocate a VM to a compatible host
Detach NICs in restricted networks from VMs	VM_RELOCATEDETACH_NIC	This privilege allows a user to relocate a VM to a compatible hostdetach NICs in restricted networks	X
Manage workflow for scaling groups	MANAGE_SCALING_GROUP_MANAGE_WORKFLOWGROUPS	This privilege allows a user to enable or disable workflow for manage scaling groups .(add, edit and delete)	X	X
Attach NICs in restricted networks to VMs	VM_ATTACH_NICManage virtual machine ISO disks	MANAGE_ISO	This privilege allows a user to attach NICs in restricted networksmanage ISO disks in virtual machines (add, edit and delete)	X	X
Detach NICs in restricted networks from Manage restricted VApps and VMs	VMVAPP_DETACHRESTRICTED_NICMANAGE	This privilege allows a user to detach NICs in restricted networksmanage restricted VApps and VMs	X
Manage scaling groups	MANAGE_SCALING_GROUPSView restricted VApps and VMs	VAPP_RESTRICTED_VIEW	This privilege allows a user to manage scaling groups (add, edit and delete)view restricted VApps and VMs	X					Manage virtual machine ISO disks
MANAGE_ISORestrict VM	VM_RESTRICT	This privilege allows a user to manage ISO disks in virtual machines (add, edit and delete)restrict VMs	X
Manage restricted VApps and Move VMs	VAPPMANAGE_RESTRICTEDMOVE_MANAGEVM	This privilege allows a user to manage restricted VApps and VMsmove VMs between VDCs	X	X				View restricted VApps and VMs
VAPP_RESTRICTED_VIEWRetrieve virtual machine initial password	VM_RETRIEVE_INITIAL_PASSWORD	This privilege allows a user to view restricted VApps and VMsretrieve the initial password of a virtual machine	X	X			Restrict VM
Assign public IPs to VMs	VM_ASSIGN_PUBLIC_RESTRICTIP	This privilege allows a user to assign public IPs to restrict VMs	X	X	X	X
Move Assign external IPs to VMs	MANAGEVM_ASSIGN_MOVEEXTERNAL_VMIP	This privilege allows a user to move VMs between VDCsassign external IPs to VMs	X	X	X	X
Retrieve virtual machine initial Reset VM guest password	VM_RETRIEVERESET_INITIALGUEST_PASSWORD	This privilege allows a user to retrieve reset the initial password of a virtual machine	X	X			Assign public IPs to VMs
Manage VM disaster recovery protection	VM_ASSIGNMANAGE_PUBLIC_IPDRAAS	This privilege allows a user to assign public IPs to enable or disable disaster recovery protection for VMs	X	X
Manage VM snapshots	MANAGE_SNAPSHOT	This privilege allows a user to create, delete, and revert VM snapshots	X	X
Assign external IPs to VMs	VM_ASSIGN_EXTERNAL_IPView enterprise snapshots list	VIEW_ENTERPRISE_SNAPSHOTS_LIST	This privilege allows a user to assign external IPs to VMsview the enterprise’s VM snapshots list	X	X	X	X
Reset VM guest password	VM_RESET_GUEST_PASSWORDManage snapshot auto delete function	USERS_ENABLE_DISABLE_SNAPSHOT_AUTODELETE	This privilege allows a user to reset the initial password of a virtual machineenable snapshot auto deletion	X	X
Manage VM disaster recovery protectionVMsnapshot auto delete expire date	USERS_MANAGE_DRAASSNAPSHOT_AUTODELETE	This privilege allows a user to enable or disable disaster recovery protection for VMsspecify the snapshot auto deletion expire date	X	X
Apps library Catalogue privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access Apps library Catalogue view	APPLIB_VIEW	This privilege allows a user to access the Appliance library view	X	X
Manage VM templates from Apps libraryCatalogue	APPLIB_ALLOW_MODIFY	This privilege allows a user to view the Appliance library contents, modify virtual machine templates (download from remote repositories, edit and delete) and promote instances	X	X
Upload virtual machine template	APPLIB_UPLOAD_IMAGE	This privilege allows a user to upload virtual machine templates from a local file into the Apps libraryCatalogue	X	X
Manage repository	APPLIB_MANAGE_REPOSITORY	This privilege allows a user to manage repositories (add and delete repositories)	X	X
Download virtual machine template	APPLIB_DOWNLOAD_IMAGE	This privilege allows a user to download virtual machine templates from the Appliance library to their hard disk	X	X
Manage VM template categories	APPLIB_MANAGE_CATEGORIES	This privilege allows a user to manage categories of virtual machine templates that belong to their enterprise (add and delete)	X	X
Manage VM template global categories	APPLIB_MANAGE_GLOBAL_CATEGORIES	This privilege allows a user to manage categories of virtual machine templates that are common and available to all enterprises (add and delete)	X
Display datacenter capacity and free space	APPLIB_SHOW_DC_CAPACITY	This privilege allows a user to view the capacity and remaining space of a datacenter	X
Export a virtual machine template to datacenter	APPLIB_EXPORT_TO_PRIVATE	This privilege allows a user to export a virtual machine template to another private datacenter.	X	X
Export a virtual machine template to public cloud region	APPLIB_EXPORT_TO_PUBLIC	This privilege allows a user to export a virtual machine template to another public cloud region.	X	X
Manage virtual appliance specs	MANAGE_VAPP_SPEC	This privilege allows a user to manage virtual appliance specs (add and edit)	X	X
Download VM templates from remote repository	APPLIB_DOWNLOAD_FROM_REMOTE_REPOSITORY	This privilege allows a user to download virtual machine templates from remote repositories	X	X
Specify allocation of template disks	APPLIB_DISK_ALLOCATION	This privilege allows a user to specify the allocation of template disks	X	X
Accept virtual machine template terms of use	APPLIB_ACCEPT_IMAGE_TERMS	This privilege allows a user to accept virtual machine template terms of use	X	X
Users privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access Users view	USERS_VIEW	This privilege allows a user to access the Users view	X	X
Manage enterprises	USERS_MANAGE_ENTERPRISE	This privilege allows a user to manage enterprises (add, edit and delete)	X	X
Manage users	USERS_MANAGE_USERS	This privilege allows a user to manage users (add, edit and delete)	X	X
Manage users of all enterprises	USERS_MANAGE_OTHER_ENTERPRISES	This privilege allows a user to manage users of more than one enterprise and move users between enterprises. Without it, the Enterprise list is not shown in Users view	X	X
No VDC restriction	USERS_PROHIBIT_VDC_RESTRICTION	Normally a user within an enterprise can have a list of VDCs assigned and these will be the only VDCs that they will be able to see. Setting this privilege exempts a user from having their VDC list restricted and they will be able to see all VDCs in their enterprise	X	X
Access Roles and Scope screens	USERS_VIEW_PRIVILEGES	This privilege allows a user to access the Roles and Scopes screen	X
Manage roles	USERS_MANAGE_ROLES	This privilege allows a user to manage roles (add, edit and delete roles; modify privileges assigned to roles; assign scopes to roles)	X
Associate role with enterprise	USERS_MANAGE_ROLES_OTHER_ENTERPRISES	This privilege allows a user to associate a role with any enterprise	X
Manage global role	USERS_MANAGE_SYSTEM_ROLES	This privilege allows a user to manage roles that are common and available to all enterprises, rather than being constrained to a single enterprise	X
Display connected users	USERS_ENUMERATE_CONNECTED	This privilege allows a user to display connected users	X
Define enterprise manager	USERS_DEFINE_AS_MANAGER	This privilege defines a user as an enterprise manager. Enterprise managers receive physical machine notification emails	X	X
Manage Chef enterprises	USERS_MANAGE_CHEF_ENTERPRISE	This privilege allows a user to enable and manage Chef for enterprises	X	X
Manage scopes	USERS_MANAGE_SCOPES	This privilege allows a user to manage scopes (add, edit and delete scopes)	X
Manage enterprise reserved servers	USERS_MANAGE_RESERVED_MACHINES	This privilege allows a user to manage reserved servers at enterprise level	X
Modify enterprise theme	USERS_MANAGE_ENTERPRISE_BRANDING	This privilege allows a user to manage enterprise branding (select a specific theme for an enterprise)	X
Allow user to push own metrics	USERS_PUSH_METRICS	This privilege allows a user to push their own metrics	X	X	X
Manage provider credentials	USERS_MANAGE_CREDENTIALS	This privilege allows a user to manage provider credentials (add and delete)	X	X
Manage user applications	USERS_MANAGE_APPLICATIONS	This privilege allows a user to manage applications (add and delete)	X	X
Manage reseller enterprises	ENTERPRISE_MANAGE_RESELLER	This privilege allows a user to manage resellers	X
Manage key node enterprises	ENTERPRISE_MANAGE_KEY_NODE	This privilege allows a user to manage aggregation nodes	X
Manage enterprise properties	ENTERPRISE_MANAGE_PROPERTIES	This privilege allows a user to manage enterprise properties	X	X
Manage user allowed CIDRs	MANAGE_USER_CIDR_ACCESS	This privilege allows a user to manage allowed CIDRs for users	X	X
Manage virtual datacenter roles	USERS_MANAGE_VDC_ROLES	This privilege allows a user to manage virtual datacenter roles (select default role, define user exceptions)	X	X
Access budgets section	BUDGET_VIEW	This privilege allows a user to access the budgets section	X	X
Manage budgets	BUDGET_MANAGE	This privilege allows a user to manage budgets (create, edit and delete)	X	X
Manage role and scope allowed CIDRs	MANAGE_ROLE_AND_SCOPE_CIDR_ACCESS	This privilege allows a user to manage allowed CIDRs for roles and scopes	X	X
Manage mail server for reseller	ENTERPRISE_MANAGE_SERVER_MAIL	This privilege allows a user to manage server mail for resellers	X
Manage user creation in provider	ENTERPRISE_CREATE_USER_IN_PROVIDER	This privilege allows a user to manage user creation in a provider (in credentials list)	X	X
Access user metadata (dashboards)	USERS_VIEW_USERS_METADATA	This privilege allows a user to access users metadata (dashboards)	X	X
Manage user metadata (dashboards)	USERS_MANAGE_USERS_METADATA	This privilege allows a user to manage users metadata (dashboards)	X	X
Access enterprise metadata (dashboards)	USERS_VIEW_ENTERPRISE_METADATA	This privilege allows a user to access enterprise metadata (dashboards)	X	X
Manage enterprise metadata (dashboards)	USERS_MANAGE_ENTERPRISE_METADATA	This privilege allows a user to manage enterprise metadata (dashboards)	X	X
System configuration Pricing privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Add a cost code when editing a VM template	APPLIB_VM_	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info	Access Configuration view	SYSCONFIGCOST_CODE	This privilege allows a user to select a cost code when editing a virtual machine template	X	X
Access Pricing view	PRICING_VIEW	This privilege allows a user to access the Configuration Pricing view	X	X				Modify configuration data
SYSCONFIG_ALLOW_MODIFYManage pricing	PRICING_MANAGE	This privilege allows a user to edit all system-wide configuration settingsmanage pricing components (add, edit and delete currencies, pricing models and cost codes)	X	X
Allow access to reports	SYSCONFIG_SHOW_REPORTSManage pricing credentials	MANAGE_PRICING_CREDENTIALS	This privilege allows a user to access external reports by clicking the Reports button. The button will only be visible if the 'Reports URL' system property is not empty (Configuration -> System Properties -> General -> Reports URL)manage pricing credentials	X	X
Manage default dashboards	SYSCONFIG_MANAGE_DEFAULT_DASHBOARDSGenerate billing	RUN_BILLING	This privilege allows a user to manage default dashboardsgenerate billings	X	X
Pricing Events privileges
GUI Label _________________	Application Tag	Privilege______________	Application Tag	Privilege______________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info	Add a cost code when editing a VM template	_	_	_	This privilege allows a user to select a cost code when editing a virtual machine template	X
Access Pricing view	PRICING_VIEW	This privilege allows a user to access the Pricing view	X
Manage pricing	PRICING_MANAGE	This privilege allows a user to manage pricing components (add, edit and delete currencies, pricing models and cost codes)	X
Manage pricing credentials	___________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Display all events for current enterprise	EVENTLOG_VIEW_ENTERPRISE	This privilege allows a user to manage pricing credentialsto display all events related to the current enterprise	X	X	X	X
Generate billing	RUN_BILLINGDisplay all events	EVENTLOG_VIEW_ALL	This privilege allows a user to generate billingsdisplay all events	X	X
Events Control privileges
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info	Display all events for current enterprise	_______	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access alarms section	USERS_VIEW_ALARMS	This privilege allows a user to access the alarms sections	X	X
Manage alarms	USERS_MANAGE_ALARMS	This privilege allows a user to manage alarms (create, edit and delete)	X	X
Access alerts section	USERS_VIEW_ALERTS	This privilege allows a user to display all events related to the current enterpriseaccess the alerts sections	X	X	X	X		Display all events
EVENTLOG_VIEW_ALLManage alerts	USERS_MANAGE_ALERTS	This privilege allows a user to display all eventsmanage alerts (create, edit and delete)	X	X				Control privileges
Access action plans, schedule and alert trigger tabs	ACTION_PLAN_VIEW	This privilege allows a user to access the Action plans, the Schedule and Alert trigger tabs	X	X
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access alarms section	USERS_VIEW_ALARMS	This privilege allows a user to access the alarms sections	X	Manage action plans and task schedules	ACTION_PLAN_MANAGE	This privilege allows a user to manage action plans, schedule and alert triggers	X	X
View enterprise hierarchy	ENTERPRISE_VIEW_HIERARCHY	This privilege allows the user to display the enterprises in a hierarchy	X	X
Access resource tags tabs and resource tags management view	TAGS_VIEW	This privilege allows the user to display the Tags tab of resources and the Tags management view	X	X
Manage alarmsUSERStags for compatible resources	TAGS_MANAGE_ALARMS	This privilege allows a the user to manage alarms (createtags for compatible resources (add, edit, synchronize and delete)	X	X
Access alerts sectionUSERStag policies view	TAG_POLICIES_VIEW_ALERTS	This privilege allows a the user to access the alerts sectionsdisplay tag policis view	X	X
Manage alertsUSERStag policies	TAG_POLICIES_MANAGE_ALERTS	This privilege allows a the user to manage alerts (create, edit and delete)	tag policies (add, edit and delete)	X	X
System configuration privileges
Access action plans, schedule and alert trigger tabs	ACTION_PLAN_VIEW	This privilege allows a user to access the Action plans, the Schedule and Alert trigger tabs	X
Manage action plans and task schedules
GUI Label _________________	Application Tag	Privilege____________________________________	Cloud Admin	Ent Admin	Ent User	Ent Viewer	Info
Access Configuration view	SYSCONFIG_VIEW	This privilege allows a user to manage action plans, schedule and alert triggersaccess the Configuration view	X
View enterprise hierarchy	ENTERPRISE_VIEW_HIERARCHYModify configuration data	SYSCONFIG_ALLOW_MODIFY	This privilege allows the a user to display the enterprises in a hierarchyedit all system-wide configuration settings	X					Access resource tags tabs and resource tags management view
TAGS_VIEWAllow access to reports	SYSCONFIG_SHOW_REPORTS	This privilege allows the a user to display the Tags tab of resources and the Tags management view	X	access external reports by clicking the Reports button. The button will only be visible if the 'Reports URL' system property is not empty (Configuration -> System Properties -> General -> Reports URL)	X	X
Manage tags for compatible resourcesTAGSdefault dashboards	SYSCONFIG_MANAGE_DEFAULT_DASHBOARDS	This privilege allows the a user to manage tags for compatible resources (add, edit, synchronize and delete)default dashboards	X

Key to Info Column of Privileges Table

...

Version	Old Version 33	New Version 34
Changes made by	MS	MS
Saved on	Dec 24, 2021	May 03, 2022

Page Comparison

Versions Compared

Key

Home privileges

Services XaaS privileges

Virtual datacenters privileges

Infrastructure privileges

Virtual datacenters privileges

Virtual appliances privileges

Catalogue privileges

Users privileges

Pricing privileges

Events privileges

Control privileges

Control privileges

System configuration privileges