Review permissions

This commit is contained in:
Michael Kuzmin 2018-11-06 01:11:06 +03:00
parent d641a78fb3
commit 436cdc8ac6
1 changed files with 42 additions and 23 deletions

View File

@ -135,26 +135,45 @@ Only use the `cluster` option. Optionally specify a `resource_pool`:
``` ```
## Required vSphere Permissions ## Required vSphere Permissions
Read only (without propagation) is required for:
``` * VM folder (this object and children):
vcenter -> datacenter -> cluster ```
vcenter -> datacenter -> distributed switch Virtual machine -> Inventory
``` Virtual machine -> Configuration
Required for any: resource pool, folder, distributed port group, datastore or storage cluster (with propagation) used in the builder: Virtual machine -> Interaction
``` Virtual machine -> Snapshot management
Datastore ->Allocate space Virtual machine -> Provisioning
Datastore ->Browse datastore ```
Datastore ->Low level file operations * Resource pool, host, or cluster (this object):
Datastore ->Remove file ```
Datastore ->Update virtual machine files Resource -> Assign virtual machine to resource pool
Datastore ->Update virtual machine metadata ```
Network -> Assign network * Host in clusters without DRS (this object):
Resource -> Assign virtual machine to resource pool ```
Virtual machine -> Change Configuration Read-only
Virtual machine -> Edit Inventory ```
Virtual machine -> Guest operations * Datastore (this object):
Virtual machine -> Interaction ```
Virtual machine -> Provisioning Datastore -> Allocate space
Virtual machine -> Service configuration Datastore -> Browse datastore
Virtual machine -> Snapshot management Datastore -> Low level file operations
``` ```
* Network (this object):
```
Network -> Assign network
```
* Distributed switch (this object):
```
Read-only
```
For floppy image upload:
* Datacenter (this object):
```
Datastore -> Low level file operations
```
* Host (this object):
```
Host -> Configuration -> System Management
```