Book Image

Mastering vRealize Operations Manager

Book Image

Mastering vRealize Operations Manager

Overview of this book

Table of Contents (23 chapters)
Mastering vRealize Operations Manager
Credits
Foreword
About the Authors
Acknowledgments
About the Reviewers
www.PacktPub.com
Preface
14
Just Messing Around
Index

Overview of role-based access


Role-based access is the principle of allowing least-privilege access based on a user's role within an organization. vROps 6.0 comes with a twofold advantage: out of the box roles as well as the ability to define your own roles based on a very granular set of permissions.

There are three main ways to authenticate users against vROps. These include:

  • Authentication via vCenter (vCenter Single Sign On)

  • Direct Active Directory (LDAP)

  • Local vROps users

The only users we can't really manage directly through vROps are vCenter users. Just like in vCOps 5.x, when vROps 6.0 registers with vCenter, new roles get added to the vCenter server and users can be given these roles that allow them to log in to vROps with the associated permissions.

There are two levels of access in vROps 6: access to objects such as hosts or virtual machines and access to permissions within vROps, such as the ability to edit dashboards or create alarms.

Roles are not that different from the access rights...