Versions Compared

Old Version 10

changes.mady.by.user MS (Unlicensed)

Saved on

compared with

New Version Current

changes.mady.by.user MS (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents


Create a read only user for the whole platform

To create a read only user for the whole platform, assign the ENTERPRISE_VIEWER role to the user. This user will only be able to view the platform, they will not be able to create and deploy VMs and so on.

...

Here are some notes about how the privileges work for the ENTERPRISE_VIEWER role.

...

  • The Access virtual datacenters view privilege (VDC_ENUMERATE) lets the user list and open virtual appliances

  • The Edit virtual appliance details privilege, lets the user make changes to virtual appliances, open the VM edit view, and in combination with other privileges, lets the user :

    • The Edit virtual machine details privilege (VM_EDIT_CPU_RAM) lets the user modify the VM CPU and RAM

    • The Access resource tags tabs and resource tags management view privilege (TAGS_VIEW) lets the user modify VM tags

    • The Access metrics privilege (USERS_SHOW_METRICS) lets the user display metrics for the VM, and the Manage virtual machine metrics privilege (USERS_ENABLE_DISABLE_VM_METRICS) lets the user activate VM metrics by selecting Fetch metrics

    • Move the VM to another VApp

  • The default viewer role does not have the Edit virtual appliance details privilege (VAPP_CUSTOMISE_SETTINGS)

  • The Access virtual datacenters view Display enterprise statistics privilege (VDC_ENUMERATEENTERPRISE_RESOURCE_SUMMARY_ENT) lets a user list and open virtual appliances. default viewer user list VMs in their enterprise

  • By default, the viewer role has the privileges to use all XaaS services