1,798
edits
Changes
→Creating, Modifying and Removing Permissions
== Creating, Modifying and Removing Permissions ==
A permission is a combination of role applied to a particular user or group and assigned to a VMware Server object. For example, a custom role called ''Training'' applied to a user called ''Bill'' and applied to a virtual machine called ''win2008'' is a ''permission'' since to controls access permissions Bill has to the 'win2008'' virtual machine.
VMware Server permissions are managed from within the VI Web Access interface. When logged in as a user with appropriate administrative privileges, select the host system or virtual machine to which the new permission is to be associated from the ''Inventory'' panel. In so doing the first part of the permission, the VMware Server object, has been selected. Click on the ''Permissions'' tab in the workspace area to display the current permission configuration for the selected object.
To create a new permission on the selected object, click on the ''New Permission'' link located in the ''Commands'' panel to invoke the ''New Permission'' dialog as shown in the following figure:
[[Image:vmware_server_new_permission_user.jpg|Defining the user or group for a new VMware Server permission]]
From this screen, the second component of the permission is selected, namely the user or group to which the permission is to apply. Once the required user or group has been selected, the dialog updates to provide a drop down menu containing existing roles, together with a list of individual privileges and privilege categories. Either of the options may be used to configure the access privileges for the permission:
[[Image:vmware_server_new_permission_roles.jpg|Defining the Role for a new VMware Server permission]]
To complete the permission creation process, select either a pre-existing role, or select the required combination of privileges. The permission is to apply to all child objects of the select object, ensure that the ''Grant this permission to all child objects'' option is selected. Click ''OK'' when completed.
To modify a permission, select the associated host or virtual machine from the ''Inventory'' panel, click on the ''Permissions'' tab, select he required permission from the list and click the ''Edit Permission'' link in the ''Commands'' panel. In the ''Edit Permissions'' dialog make the changes necessary (including assigning the permission to a different user or group, or associating the permission with a different role) and click on ''OK'' to commit the modifications.
To remove a permission, repeat the steps outlined above, selecting the ''Remove Permission'' link in place of the ''Edit Permission'' link.
