Privileges
The following table describes all the privileges in the cloud platform.
Changes to privileges
Home privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
|---|---|---|---|---|---|---|---|
List enterprises within scope | ENTERPRISE_ENUMERATE | This privilege allows a user to view the list of enterprises within scope and to view statistics for those enterprises | X |
|
|
|
|
Allow user to switch enterprise | ENTERPRISE_ADMINISTER_ALL | This privilege allows a user to change to another enterprise, in order to administer it, by clicking the switch user button in the Enterprises list | X |
|
|
|
|
Display enterprise statistics | ENTERPRISE_RESOURCE_SUMMARY_ENT | This privilege allows a user to filter statistics by enterprise to display the resources used by an enterprise in the enterprise resources panel | X | X |
| X |
|
Display enterprise limits in statistics | ENTERPRISE_SHOW_STATS_LIMITS | This privilege allows a user to view enterprise limits in addition to resources used in the enterprise resources panel if the user has the Display enterprise statistics privilege | X | X | X |
|
|
View bills | BILLS_VIEW | This privilege allows a user to view bills and related widgets | X |
|
|
|
|
Manage bills | BILLS_MANAGE | This privilege allows a user to manage bills | X |
|
|
|
|
Services (XaaS) privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Use default services | XAAS_USE_DEFAULT | This privilege allows a user to use default services | X | X |
|
|
|
Manage default services | XAAS_MANAGE_DEFAULT | This privilege allows a user to manage default services | X |
|
|
|
|
Use enterprise services | XAAS_USE_ENTERPRISE | This privilege allows a user to use enterprise services | X | X | X | X |
|
Manage enterprise services | XAAS_MANAGE_ENTERPRISE | This privilege allows a user to manage enterprise services | X | X |
|
|
|
Use user services | XAAS_USE_USER | This privilege allows a user to use user services | X | X | X | X |
|
Manage user services | XAAS_MANAGE_USER | This privilege allows a user to manage user services | X | X | X |
|
|
Use datacenter services | XAAS_USE_DATACENTER | This privilege allows a user to use datacenter services | X | X | X |
|
|
Manage datacenter services | XAAS_MANAGE_DATACENTER | This privilege allows a user to manage datacenter services | X |
|
|
|
|
Use public cloud region services | XAAS_USE_PUBLIC_CLOUD_REGION | This privilege allows a user to use public cloud region services | X | X | X |
|
|
Manage public cloud region services | XAAS_MANAGE_PUBLIC_CLOUD_REGION | This privilege allows a user to manage public cloud region services | X |
|
|
|
|
Use location services | XAAS_USE_LOCATION | This privilege allows a user to use location services | X | X | X | X |
|
Manage location services | XAAS_MANAGE_LOCATION | This privilege allows a user to manage location services | X | X |
|
|
|
Use virtual datacenter services | XAAS_USE_VIRTUAL_DATACENTER | This privilege allows a user to use virtual datacenter services | X | X | X | X |
|
Manage virtual datacenter services | XAAS_MANAGE_VIRTUAL_DATACENTER | This privilege allows a user to manage virtual datacenter services | X | X | X |
|
|
Use virtual appliance services | XAAS_USE_VIRTUAL_APPLIANCE | This privilege allows a user to use virtual appliance services | X | X | X | X |
|
Manage virtual appliance services | XAAS_MANAGE_VIRTUAL_APPLIANCE | This privilege allows a user to manage virtual appliance services | X | X | X |
|
|
Use virtual machine services | XAAS_USE_VIRTUAL_MACHINE | This privilege allows a user to use virtual machine services | X | X | X | X |
|
Manage virtual machine services | XAAS_MANAGE_VIRTUAL_MACHINE | This privilege allows a user to manage virtual machine services | X | X | X |
|
|
Run actions on usable services | XAAS_EXECUTE | This privilege allows a user to run actions on the services they can use | X | X | X |
|
|
Infrastructure privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access infrastructure view and private DCs | PHYS_DC_ENUMERATE | This privilege allows a user to access the Infrastructure view and list the physical datacenters | X |
|
|
|
|
Display resource usage panel | PHYS_DC_RETRIEVE_RESOURCE_USAGE | This privilege allows a user to view the resource usage panel in the Infrastructure view | X |
|
|
|
|
Manage datacenter | PHYS_DC_MANAGE | This privilege allows a user to manage datacenters (add, edit and delete). Without it, the datacenter's properties will be read only | X |
|
|
|
|
View datacenter details | PHYS_DC_RETRIEVE_DETAILS | This privilege allows a user to go inside a datacenter and view its details (racks, physical machines, networks, storage and allocation rules) | X |
|
|
|
|
Manage datacenter infrastructure elements | PHYS_DC_ALLOW_MODIFY_SERVERS | This privilege allows a user to manage infrastructure elements (add, edit and delete racks and physical machines) | X |
|
|
|
|
Manage network elements | PHYS_DC_ALLOW_MODIFY_NETWORK | This privilege allows a user to manage network elements (add, edit and delete public networks) | X |
|
|
|
|
Manage storage elements | PHYS_DC_ALLOW_MODIFY_STORAGE | This privilege allows a user to manage storage elements (add, edit and delete storage devices, pools, tiers and volumes) | X |
|
|
|
|
Manage allocation rules | PHYS_DC_ALLOW_MODIFY_ALLOCATION | This privilege allows a user to manage allocation rules (add and delete rules) | X |
|
|
|
|
Manage datacenter backup configuration | PHYS_DC_ALLOW_BACKUP_CONFIG | This privilege allows a user to manage backup configuration at datacenter level | X |
|
|
|
|
Manage devices | MANAGE_DEVICES | This privilege allows a user to setup networking devices (Neutron) | X |
|
|
|
|
Manage public cloud regions | PCR_MANAGE | This privilege allows a user to manage public cloud regions (add, edit and delete). Without it, the public cloud region's properties will be read only | X |
|
|
|
|
Access infrastructure view and PCRs | PCR_ENUMERATE | This privilege allows a user to access the Infrastructure view and list the public cloud regions | X |
|
|
|
|
View public cloud region details | PCR_RETRIEVE_DETAILS | This privilege allows a user to go inside a public cloud region and view its details (virtual machines and hardware profiles) | X |
|
|
|
|
Manage hardware profile types and family | MANAGE_HARDWARE_PROFILE_TYPE_AND_FAMILY | This privilege allows the user to manage hardware profile types and family (add, edit and delete) | X |
|
|
|
|
View and manage protection managers | MANAGE_DRAAS_CONFIG | This privilege allows the user to manage protection managers for disaster recovery (create, edit and delete) | X |
|
|
|
|
Virtual datacenters privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access virtual datacenters view | VDC_ENUMERATE | This privilege allows a user to access the Virtual Datacenters view | X | X | X | X |
|
Manage virtual datacenters | VDC_MANAGE | This privilege allows a user to manage virtual datacenters (add, edit and delete). Without it, the virtual datacenter details are read only | X | X |
|
|
|
Manage virtual appliances | VDC_MANAGE_VAPP | This privilege allows a user to manage virtual appliances (add, edit and delete) | X | X | X |
|
|
Manage virtual network elements | VDC_MANAGE_NETWORK | This privilege allows a user to manage private and public networks (add, edit and delete) | X | X |
|
|
|
Manage virtual storage elements | VDC_MANAGE_STORAGE | This privilege allows a user to manage storage volumes (add, edit and delete) | X | X |
|
|
|
Manage floating IPs | MANAGE_FLOATINGIPS | This privilege allows a user to manage floating IPs (add and delete) | X | X |
|
|
|
Manage firewalls | MANAGE_FIREWALLS | This privilege allows a user to manage firewalls (add, edit and delete) for virtual datacenters | X | X |
|
|
|
Manage load balancers | MANAGE_LOADBALANCERS | This privilege allows a user to manage load balancers (add, edit and delete) for virtual datacenters | X | X |
|
|
|
Manage virtual storage controller | VDC_MANAGE_STORAGE_CONTROLLER | This privilege allows a user to manage the controller of storage volumes | X | X | X |
|
|
Manage public IPs | MANAGE_PUBLICIPS | This privilege allows a user to manage public IPs for private virtual datacenters | X | X | X |
|
|
Modify allocation when attaching a disk | VDC_MANAGE_STORAGE_DISK_ALLOCATION | This privilege allows a user to modify the allocation of disks before they are deployed to the hypervisor and specify allocation when attaching a new disk and it is not possible once the VM is deployed (disk already created/copied) | X |
|
|
|
|
Manage NAT IPs | MANAGE_NATIPS | This privilege allows a user to manage NAT IPs for private virtual datacenters | X | X | X |
|
|
Manage VPNs | MANAGE_VPN | This privilege allows a user to manage VPNs | X | X |
|
|
|
Manage classic firewalls | MANAGE_CLASSIC_FIREWALLS | This privilege allows a user to manage classic firewalls (edit and delete) for devices | X |
|
|
|
|
Manage private IP reservations | MANAGE_PRIVATEIP_RESERVATION | This privilege allows a user to manage private IP reservations | X |
|
|
|
|
Manage default virtual datacenter firewall | MANAGE_DEFAULT_FIREWALL | This privilege allows a user to define a default virtual datacenter firewall | X |
|
|
|
|
Manage enterprise datacenter default roles | VDC_MANAGE_DEFAULT_ROLE | This privilege allows a user to manage enterprise datacenter default roles (creation/edition) | X |
|
|
|
|
Access public network tab | VDC_VIEW_PUBLIC_NETWORK | This privilege gives the user access to public network resources in virtual infrastructure | X | X | X | X |
|
Manage public network elements | VDC_MANAGE_PUBLIC_NETWORK | This privilege allows a user to manage public network resources in virtual infrastructure | X | X | X | X |
|
Access external network tab | VDC_VIEW_EXTERNAL_NETWORK | This privilege gives the user access to external network resources in virtual infrastructure | X | X | X | X |
|
Manage external network elements | VDC_MANAGE_EXTERNAL_NETWORK | This privilege allows a user to manage external network resources in virtual infrastructure | X | X | X | X |
|
Manage availability sets | MANAGE_AVAILABILITY_SET | This privilege allows a user to manage availability sets (add and delete) for virtual datacenters | X | X |
|
|
|
Assign availability set to VM | ASSIGN_AVAILABILITY_SET | This privilege allows a user to assign availability sets to virtual machine (create and edit VM) | X | X |
|
|
|
Manage the bandwidth limit for NAT | MANAGE_BANDWIDTHLIMIT_NAT | This privilege allows a user to manage the bandwidth limit for NAT | X |
|
|
|
|
Manage the bandwidth limit for public IPs | MANAGE_BANDWIDTHLIMIT_PUBLIC | This privilege allows a user to manage the bandwidth limit for public IPs | X |
|
|
|
|
Manage resource groups | MANAGE_RESOURCE_GROUP | This privilege allows a user to create resource groups | X | X | X |
|
|
Delete resource groups | DELETE_RESOURCE_GROUP | This privilege allows a user to delete resource groups | X | X | X |
|
|
Manage global networks | MANAGE_GLOBAL_NETWORK | This privilege allows a user to manage global networks | X | X | X |
|
|
Update private MAC IP | UPDATE_MAC_IP | This privilege allows a user to update private MAC IP | X |
|
|
|
|
Virtual appliances privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Edit virtual appliance details | VAPP_CUSTOMISE_SETTINGS | This privilege allows a user to edit virtual appliance details (name, CPUs, etc.), go inside virtual appliances and view their details | X | X | X |
|
|
Deploy and undeploy virtual appliances | VAPP_DEPLOY_UNDEPLOY | This privilege allows a user to deploy/undeploy virtual appliances | X | X | X |
|
|
Perform virtual machine actions | VAPP_PERFORM_ACTIONS | This privilege allows a user to perform virtual machine actions (power on/off, pause, reboot, remote access) | X | X | X |
|
|
Create instance | VAPP_CREATE_INSTANCE | This privilege allows a user to create instance templates of a virtual machine within a virtual appliance | X | X | X |
|
|
Manage virtual machine hard disks | MANAGE_HARD_DISKS | This privilege allows a user to access the virtual machine hard disk tab and manage hard disks (add and delete) | X | X |
|
|
|
Manage layers | VAPP_MANAGE_LAYERS | This privilege allows a user to manage anti-affinity layers in virtual appliances (create, edit and delete layers) | X | X | X |
|
|
Manage virtual machine backup configuration | VAPP_MANAGE_BACKUP | This privilege allows a user to access the backup configuration at virtual machine level and set the backup type and contents | X |
|
|
|
|
Manage virtual machine backup schedule | VAPP_DEFINE_BACKUP_INFO | This privilege allows a user to specify an additional option for backup configuration by setting backup dates and times | X |
|
|
|
|
Delete unknown virtual machines | VAPP_DELETE_UNKNOWN_VM | This privilege allows a user to delete virtual machines in unknown state | X |
|
|
|
|
Assign firewalls to virtual machines | ASSIGN_FIREWALLS | This privilege allows a user to assign already created firewalls to virtual machines | X | X |
|
|
|
Manage virtual machine backup disks | VAPP_MANAGE_BACKUP_DISKS | This privilege allows a user to specify disks and disk backup types (snapshot and complete) | X | X |
|
|
|
Assign load balancers | ASSIGN_LOADBALANCERS | This privilege allows a user to assign load balancers | X | X |
|
|
|
Manage virtual machine metrics | USERS_ENABLE_DISABLE_VM_METRICS | This privilege allows a user to activate monitoring of virtual machines | X | X | X |
|
|
Access metrics | USERS_SHOW_METRICS | This privilege allows a user to manage monitoring | X | X | X | X |
|
Restore virtual machine backups | VAPP_RESTORE_BACKUP | This privilege allows a user to restore virtual machine backups | X | X |
|
|
|
Protect/unprotect virtual machines | VM_PROTECT_ACTION | This privilege allows a user to protect/unprotect a virtual machine | X |
|
|
|
|
Consume virtual appliance specs | CONSUME_VAPP_SPEC | This privilege allows a user to consume virtual appliance specs | X |
|
|
|
|
Override virtual machine constraints | VM_EXCEED_CPU_RAM | This privilege allows a user to modify virtual machine CPU and RAM to values outside the maximum and minimum values defined in the virtual machine template | X |
|
|
|
|
Edit virtual machine details | VM_EDIT_CPU_RAM | This privilege allows a user to edit virtual machine details (CPU and RAM) | X | X | X |
|
|
Retrieve default template credentials | VM_CHECK_USER_PASSWORD | This privilege allows a user to retrieve the default user and password of a template | X |
|
|
|
|
Relocate a VM to a compatible host | VM_RELOCATE | This privilege allows a user to relocate a VM to a compatible host | X |
|
|
|
|
Attach NICs in restricted networks to VMs | VM_ATTACH_NIC | This privilege allows a user to attach NICs in restricted networks | X |
|
|
|
|
Detach NICs in restricted networks from VMs | VM_DETACH_NIC | This privilege allows a user to detach NICs in restricted networks | X |
|
|
|
|
Manage scaling groups | MANAGE_SCALING_GROUPS | This privilege allows a user to manage scaling groups (add, edit and delete) | X |
|
|
|
|
Manage virtual machine ISO disks | MANAGE_ISO | This privilege allows a user to manage ISO disks in virtual machines (add, edit and delete) | X |
|
|
|
|
Manage restricted VApps and VMs | VAPP_RESTRICTED_MANAGE | This privilege allows a user to manage restricted VApps and VMs | X |
|
|
|
|
View restricted VApps and VMs | VAPP_RESTRICTED_VIEW | This privilege allows a user to view restricted VApps and VMs | X |
|
|
|
|
Restrict VM | VM_RESTRICT | This privilege allows a user to restrict VMs | X |
|
|
|
|
Move VMs | MANAGE_MOVE_VM | This privilege allows a user to move VMs between VDCs | X |
|
|
|
|
Retrieve virtual machine initial password | VM_RETRIEVE_INITIAL_PASSWORD | This privilege allows a user to retrieve the initial password of a virtual machine | X |
|
|
|
|
Assign public IPs to VMs | VM_ASSIGN_PUBLIC_IP | This privilege allows a user to assign public IPs to VMs | X | X | X | X |
|
Assign external IPs to VMs | VM_ASSIGN_EXTERNAL_IP | This privilege allows a user to assign external IPs to VMs | X | X | X | X |
|
Reset VM guest password | VM_RESET_GUEST_PASSWORD | This privilege allows a user to reset the initial password of a virtual machine | X |
|
|
|
|
Manage VM disaster recovery protection | VM_MANAGE_DRAAS | This privilege allows a user to enable or disable disaster recovery protection for VMs | X | X |
|
|
|
Manage VM snapshots | MANAGE_SNAPSHOT | This privilege allows a user to create, delete, and revert VM snapshots | X | X |
|
|
|
View enterprise snapshots list | VIEW_ENTERPRISE_SNAPSHOTS_LIST | This privilege allows a user to view the enterprise’s VM snapshots list | X | X |
|
|
|
Manage snapshot auto delete function | USERS_ENABLE_DISABLE_SNAPSHOT_AUTODELETE | This privilege allows a user to enable snapshot auto deletion | X | X |
|
|
|
Manage snapshot auto delete expiration date | USERS_MANAGE_SNAPSHOT_AUTODELETE | This privilege allows a user to specify the snapshot auto deletion expire date | X | X |
|
|
|
Catalogue privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access Catalogue view | APPLIB_VIEW | This privilege allows a user to access the Catalogue view | X | X |
|
|
|
Manage VM templates from Catalogue | APPLIB_ALLOW_MODIFY | This privilege allows a user to view the Catalogue contents, modify virtual machine templates (download from remote repositories, edit and delete) and promote instances | X | X |
|
|
|
Upload virtual machine template | APPLIB_UPLOAD_IMAGE | This privilege allows a user to upload virtual machine templates from a local file into the Catalogue | X | X |
|
|
|
Manage repository | APPLIB_MANAGE_REPOSITORY | This privilege allows a user to manage repositories (add and delete repositories) | X | X |
|
|
|
Download virtual machine template | APPLIB_DOWNLOAD_IMAGE | This privilege allows a user to download virtual machine templates from the Catalogue to their hard disk | X | X |
|
|
|
Manage VM template categories | APPLIB_MANAGE_CATEGORIES | This privilege allows a user to manage categories of virtual machine templates that belong to their enterprise (add and delete) | X | X |
|
|
|
Manage VM template global categories | APPLIB_MANAGE_GLOBAL_CATEGORIES | This privilege allows a user to manage categories of virtual machine templates that are common and available to all enterprises (add and delete) | X |
|
|
|
|
Display datacenter capacity and free space | APPLIB_SHOW_DC_CAPACITY | This privilege allows a user to view the capacity and remaining space of a datacenter | X |
|
|
|
|
Export a virtual machine template to datacenter | APPLIB_EXPORT_TO_PRIVATE | This privilege allows a user to export a virtual machine template to another private datacenter. | X |
|
|
|
|
Export a virtual machine template to public cloud region | APPLIB_EXPORT_TO_PUBLIC | This privilege allows a user to export a virtual machine template to another public cloud region. | X |
|
|
|
|
Manage virtual appliance specs | MANAGE_VAPP_SPEC | This privilege allows a user to manage virtual appliance specs (add and edit) | X |
|
|
|
|
Download VM templates from remote repository | APPLIB_DOWNLOAD_FROM_REMOTE_REPOSITORY | This privilege allows a user to download virtual machine templates from remote repositories | X | X |
|
|
|
Specify allocation of template disks | APPLIB_DISK_ALLOCATION | This privilege allows a user to specify the allocation of template disks | X |
|
|
|
|
Accept virtual machine template terms of use | APPLIB_ACCEPT_IMAGE_TERMS | This privilege allows a user to accept virtual machine template terms of use | X | X |
|
|
|
Manage script templates | MANAGE_SCRIPT_TEMPLATES | This privilege allows a user to manage script templates (add, edit and delete) | X |
|
|
|
|
Add a script template to a virtual machine template | SCRIPT_TEMPLATE_ATTACH_TO_APPLIB | This privilege allows a user attach an script template to a virtual machine template | X |
|
|
|
|
Users privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access Users view | USERS_VIEW | This privilege allows a user to access the Users view | X | X |
|
|
|
Manage enterprises | USERS_MANAGE_ENTERPRISE | This privilege allows a user to manage enterprises (add, edit and delete) | X |
|
|
|
|
Manage users | USERS_MANAGE_USERS | This privilege allows a user to manage users (add, edit and delete) | X | X |
|
|
|
Manage users of all enterprises | USERS_MANAGE_OTHER_ENTERPRISES | This privilege allows a user to manage users of more than one enterprise and move users between enterprises. Without it, the Enterprise list is not shown in Users view | X |
|
|
|
|
No VDC restriction | USERS_PROHIBIT_VDC_RESTRICTION | Normally a user within an enterprise can have a list of VDCs assigned and these will be the only VDCs that they will be able to display. Setting this privilege exempts a user from having their VDC list restricted and they will be able to display all VDCs in their enterprise | X | X |
|
|
|
Access Roles and Scope screens | USERS_VIEW_PRIVILEGES | This privilege allows a user to access the Roles and Scopes screen | X |
|
|
|
|
Manage roles | USERS_MANAGE_ROLES | This privilege allows a user to manage roles (add, edit and delete roles; modify privileges assigned to roles; assign scopes to roles) | X |
|
|
|
|
Associate role with enterprise | USERS_MANAGE_ROLES_OTHER_ENTERPRISES | This privilege allows a user to associate a role with any enterprise | X |
|
|
|
|
Manage global role | USERS_MANAGE_SYSTEM_ROLES | This privilege allows a user to manage roles that are common and available to all enterprises, rather than being constrained to a single enterprise | X |
|
|
|
|
Display connected users | USERS_ENUMERATE_CONNECTED | This privilege allows a user to display connected users | X |
|
|
|
|
Define enterprise manager | USERS_DEFINE_AS_MANAGER | This privilege defines a user as an enterprise manager. Enterprise managers receive physical machine notification emails | X | X |
|
|
|
Manage Chef enterprises | USERS_MANAGE_CHEF_ENTERPRISE | This privilege allows a user to enable and manage Chef for enterprises | X |
|
|
|
|
Manage scopes | USERS_MANAGE_SCOPES | This privilege allows a user to manage scopes (add, edit and delete scopes) | X |
|
|
|
|
Manage enterprise reserved servers | USERS_MANAGE_RESERVED_MACHINES | This privilege allows a user to manage reserved servers at enterprise level | X |
|
|
|
|
Allow user to push own metrics | USERS_PUSH_METRICS | This privilege allows a user to push their own metrics | X | X | X |
|
|
Manage provider credentials | USERS_MANAGE_CREDENTIALS | This privilege allows a user to manage provider credentials (add and delete) | X |
|
|
|
|
Manage user applications | USERS_MANAGE_APPLICATIONS | This privilege allows a user to manage applications (add and delete) | X |
|
|
|
|
Manage reseller enterprises | ENTERPRISE_MANAGE_RESELLER | This privilege allows a user to manage resellers | X |
|
|
|
|
Manage key node enterprises | ENTERPRISE_MANAGE_KEY_NODE | This privilege allows a user to manage aggregation nodes | X |
|
|
|
|
Manage enterprise properties | ENTERPRISE_MANAGE_PROPERTIES | This privilege allows a user to manage enterprise properties | X |
|
|
|
|
Manage user allowed CIDRs | MANAGE_USER_CIDR_ACCESS | This privilege allows a user to manage allowed CIDRs for users | X |
|
|
|
|
Manage virtual datacenter roles | USERS_MANAGE_VDC_ROLES | This privilege allows a user to manage virtual datacenter roles (select default role, define user exceptions) | X |
|
|
|
|
Manage role and scope allowed CIDRs | MANAGE_ROLE_AND_SCOPE_CIDR_ACCESS | This privilege allows a user to manage allowed CIDRs for roles and scopes | X |
|
|
|
|
Manage mail server for reseller | ENTERPRISE_MANAGE_SERVER_MAIL | This privilege allows a user to manage server mail for resellers | X |
|
|
|
|
Manage user creation in provider | ENTERPRISE_CREATE_USER_IN_PROVIDER | This privilege allows a user to manage user creation in a provider (in credentials list) | X | X |
|
|
|
Access user metadata (dashboards) | USERS_VIEW_USERS_METADATA | This privilege allows a user to access users metadata (dashboards) | X |
|
|
|
|
Manage user metadata (dashboards) | USERS_MANAGE_USERS_METADATA | This privilege allows a user to manage users metadata (dashboards) | X |
|
|
|
|
Access enterprise metadata (dashboards) | USERS_VIEW_ENTERPRISE_METADATA | This privilege allows a user to access enterprise metadata (dashboards) | X |
|
|
|
|
Manage enterprise metadata (dashboards) | USERS_MANAGE_ENTERPRISE_METADATA | This privilege allows a user to manage enterprise metadata (dashboards) | X |
|
|
|
|
Manage default themes | USERS_MANAGE_THEMES | This privilege allows the user to manage the default theme for the platform (only one will be active) | X |
|
|
|
|
Manage reseller themes | USERS_MANAGE_RESELLER_THEMES | This privilege allows the user to manage themes for resellers and their customers (only one active) | X |
|
|
|
|
Manage theme login configuration | USERS_MANAGE_THEME_LOGIN_CONFIG | This privilege allows the user to manage the theme login css configuration | X |
|
|
|
|
Manage organizational units | ORGANIZATIONAL_UNITS_MANAGE | This privilege allows a user to manage organizational units | X | X |
|
|
|
Pricing privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access Pricing view | PRICING_VIEW | This privilege allows a user to access the Pricing view | X |
|
|
|
|
Manage pricing | PRICING_MANAGE | This privilege allows a user to manage pricing components (add, edit and delete currencies, pricing models and extra charges) | X |
|
|
|
|
Manage pricing credentials | MANAGE_PRICING_CREDENTIALS | This privilege allows a user to manage pricing credentials | X | X |
|
|
|
Generate billing | RUN_BILLING | This privilege allows a user to generate billings | X | X |
|
|
|
Manage hardware profile extra charges | COST_CODE_MANAGE_HARDWARE_PROFILE | This privilege allows a user to manage hardware profile extra charges | X | X |
|
|
|
Manage virtual machine extra charges | COST_CODE_MANAGE_VIRTUAL_MACHINE | This privilege allows a user to manage virtual machine extra charges | X | X |
|
|
|
Manage virtual machine template extra charges | COST_CODE_MANAGE_VIRTUAL_MACHINE_TEMPLATE | This privilege allows a user to manage virtual machine template extra charges | X | X |
|
|
|
View price factors | PRICE_FACTOR_VIEW | This privilege allows a user to access the Price factors view | X |
|
|
|
|
Manage price factors | PRICE_FACTOR_MANAGE | This privilege allows a user to manage price factors | X |
|
|
|
|
Manage enterprise products | COST_CODE_MANAGE_ENTERPRISE | This privilege allows a user to manage enterpirse products | X | X |
|
|
|
View enterprise products | COST_CODE_VIEW_ENTERPRISE | This privilege allows a user to view enteprise products | X | X |
|
|
|
View hardware profile extra charges | COST_CODE_VIEW_HARDWARE_PROFILE | This privilege allows a user to view hardware profile extra charges | X | X |
|
|
|
View virtual machine extra charges | COST_CODE_VIEW_VIRTUAL_MACHINE | This privilege allows a user to view virtual machine extra charges | X | X |
|
|
|
View virtual machine template extra charges | COST_CODE_VIEW_VIRTUAL_MACHINE_TEMPLATE | This privilege allows a user to view virtual machine template extra charges | X | X |
|
|
|
Regenerate billing | PRICING_REGENERATE | This privilege allows a user to regenerate billing for a pricing model | X | X |
|
|
|
Remove one-time extra charges from entities | COST_CODE_REMOVE_ONE_TIME | This privilege allows a user to remove one-time extra charges from entities | X | X |
|
|
|
Events privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Display all events for current enterprise | EVENTLOG_VIEW_ENTERPRISE | This privilege allows a user to display all events related to the current enterprise | X | X | X | X |
|
Display all events | EVENTLOG_VIEW_ALL | This privilege allows a user to display all events | X |
|
|
|
|
Control privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access alarms section | USERS_VIEW_ALARMS | This privilege allows a user to access the alarms sections | X |
|
|
|
|
Manage alarms | USERS_MANAGE_ALARMS | This privilege allows a user to manage alarms (create, edit and delete) | X |
|
|
|
|
Access alerts section | USERS_VIEW_ALERTS | This privilege allows a user to access the alerts sections | X |
|
|
|
|
Manage alerts | USERS_MANAGE_ALERTS | This privilege allows a user to manage alerts (create, edit and delete) | X |
|
|
|
|
Access action plans, schedule and alert trigger tabs | ACTION_PLAN_VIEW | This privilege allows a user to access the Action plans, the Schedule and Alert trigger tabs | X |
|
|
|
|
Manage action plans and task schedules | ACTION_PLAN_MANAGE | This privilege allows a user to manage action plans, schedule and alert triggers | X |
|
|
|
|
Access budgets section | BUDGET_VIEW | This privilege allows a user to access the budgets section | X |
|
|
|
|
Manage budgets | BUDGET_MANAGE | This privilege allows a user to manage budgets (create, edit and delete) | X |
|
|
|
|
View enterprise hierarchy | ENTERPRISE_VIEW_HIERARCHY | This privilege allows the user to display the enterprises in a hierarchy | X |
|
|
|
|
Access resource tags tabs and resource tags management view | TAGS_VIEW | This privilege allows the user to display the Tags tab of resources and the Tags management view | X |
|
|
|
|
Manage tags for compatible resources | TAGS_MANAGE | This privilege allows the user to manage tags for compatible resources (add, edit, synchronize and delete) | X |
|
|
|
|
Access tag policies view | TAG_POLICIES_VIEW | This privilege allows the user to display tag policies view | X |
|
|
|
|
Manage tag policies | TAG_POLICIES_MANAGE | This privilege allows the user to manage tag policies (add, edit and delete) | X |
|
|
|
|
Manage cost usage report files | USERS_MANAGE_COSTUSAGE_REPORTS_FILES | This privilege allows a user to manage cost usage report files (create, edit and delete) | X | X |
|
|
|
Manage cost usage report filters | USERS_MANAGE_COSTUSAGE_REPORTS_FILTERS | This privilege allows a user to manage cost usage report filters (create, edit and delete) | X | X |
|
|
|
Schedule to generate cost usage CSV files | USERS_SCHEDULE_COSTUSAGE_REPORTS_FILTERS | This privilege allows a user to generate CSV files of cost usage reports | X | X |
|
|
|
System configuration privileges |
|
|
|
|
|
|
|
GUI Label _________________ | Application Tag | Privilege____________________________________ | Cloud Admin | Ent Admin | Ent User | Ent Viewer | Info |
Access Configuration view | SYSCONFIG_VIEW | This privilege allows a user to access the Configuration view | X |
|
|
|
|
Modify configuration data | SYSCONFIG_ALLOW_MODIFY | This privilege allows a user to edit all system-wide configuration settings | X |
|
|
|
|
Manage default dashboards | SYSCONFIG_MANAGE_DEFAULT_DASHBOARDS | This privilege allows a user to manage default dashboards | X |
|
|
|
|
Key to info column of privileges table
= new privilege
= changed privilege
= deprecated privilege
Copyright © 2006-2024, Abiquo Holdings SL. All rights reserved