-
Title
Minimum privileges for a netvault backup role on the vCenter server to be assigned to user that w -
Description
Minimum privileges for a netvault backup role on the vCenter server to be assigned to user that will be used as netvault user when setting up VMware plugin
Procedure:
When adding a vCenter server to Netvault VMware plugin we need to give a username and password. This user not only has to be able login to the vCenter server it has to be assigned a role. If you do not want to give this user the Administrator role on vCenter server there is a minimum set of privileges required to give the user or there will be problems during backup and more commonly restore:
These are listed in the resolution section. -
Resolution
complete list of roles :
Resource -> Assign vApp to resource pool
Resource -> Assign virtual machine to resource pool
Tasks -> Create task
Tasks -> Update task
vApp - > Add virtual machine
Virtual Machine -> Inventory -> Create new
Virtual Machine -> Inventory -> Remove (to delete VM in case of failure)
VirtualMachine -> Inventory -> Register (for VM creation during VCB restore)
VirtualMachine -> Inventory -> Unregister
Virtual Machine -> Provisioning -> Allow disk access (to write data to disk)
Virtual Machine -> Provisioning -> Allow read-only disk access (to query for
changed disk areas)
Virtual Machine -> Provisioning -> Allow virtual machine download (to read
data from disk)
Virtual Machine -> State -> Create snapshot
Virtual Machine -> State -> Remove snapshot
Virtual Machine -> State -> Revert to snapshot
Virtual Machine -> Configuration -> Disk change tracking (to enable CBT)
Virtual Machine -> Configuration -> Disk lease (san mode access)
Virtual Machine -> Configuration -> Add existing disk
Virtual Machine -> Configuration -> Add new disk (to create flat vmdks - not
RDM)
Virtual Machine -> Configuration -> Add or remove device (to add virtual
devices to VM)
Virtual Machine -> Configuration -> Change CPU count
Virtual Machine -> Configuration -> Change resource
Virtual Machine -> Configuration -> Disk change tracking
Virtual Machine -> Configuration -> Disk lease
VirtualMachine -> Configuration -> RawDevice (if including a raw device
mapping or SCSI passthrough device when creating VM)
VirtualMachine -> Configuration -> HostUSBDevice (if adding a VirtualUSB
device backed by a host USB device when creating VM)
Virtual Machine -> Configuration -> Advanced (if setting values in
ConfigSpec.extraConfig when creating VM)
Virtual Machine -> Configuration -> Modify device settings
Virtual Machine -> Configuration -> Reload from path
Virtual Machine -> Configuration -> Remove Disk
Virtual Machine -> Configuration -> Rename
Virtual Machine -> Configuration -> Reset Guest Information
Virtual Machine -> Configuration -> Memory
Virtual Machine -> Configuration -> Settings
Virtual Machine -> Configuration -> Unlock Virtual Machine
Virtual Machine -> Configuration -> Swapfile placement (to set swapfile
policy, required when creating VM)
Virtual Machine -> Configuration -> Upgrade virtual hardware
Virtual Machine -> Interaction -> Power off
Virtual Machine -> Interaction -> Power on
Datastore -> Allocate space (to create VM, required on all datastores where the
virtual machine and its virtual disks will be created)
Datastore -> Browse datastore (to upload of nvram, log files, vmx file, etc)
Datastore -> Configure datastores
Datastore -> Low level file operations (to upload of nvram, log files, vmx
file, etc and to create and delete directories on the datastore during VCB
restore)
Datastore -> Remove File
Datastore -> Update virtual machine files
Extension -> Register
Global -> Cancel Task
Global -> Disable Methods
Global -> Enable Methods
Global -> Licenses
Global -> Log Event
Global -> Manage Custom Attributes
Global -> Set Custom Attributes
Global -> Settings
Host -> Advanced Settings
Host -> Storage Partition Configuration
Network -> Assign network (required on the network which is assigned to the new
virtual machine that is being created)
-
Additional Information
BakBone SFDC Solution Number: 00006138