In this recipe, we will see how to control access to Orchestrator. You will learn how to give and control access to users outside the Orchestrator administrator group.
We need a running Orchestrator configured either with SSO, AD, or LDAP.
Also, we need either access to a user management system (LDAP, SSO, or AD) or the existence of other users and groups on a given user management system.
We have three parts to this recipe each for different tasks.
During the configuration of Orchestrator, you specify a user group that is a member of the Orchestrator Administrator group. If you are using the vCenter Orchestrator installation, then this is the Orchestrator administrators group in vsphere.local. To add a user to the Orchestrator Administrator group, follow these steps:
Access your user management tool (SSO, AD, or LDAP).
Add an additional user to the group you defined as Orchestrator administrators.
Open...