Role-based access is the principle of allowing least-privilege access based on a user's role within an organization. vROps 6.0 comes with a twofold advantage: out of the box roles as well as the ability to define your own roles based on a very granular set of permissions.
There are three main ways to authenticate users against vROps. These include:
Authentication via vCenter (vCenter Single Sign On)
Direct Active Directory (LDAP)
Local vROps users
The only users we can't really manage directly through vROps are vCenter users. Just like in vCOps 5.x, when vROps 6.0 registers with vCenter, new roles get added to the vCenter server and users can be given these roles that allow them to log in to vROps with the associated permissions.
There are two levels of access in vROps 6: access to objects such as hosts or virtual machines and access to permissions within vROps, such as the ability to edit dashboards or create alarms.
Roles are not that different from the access rights...