Skip to content
Luca Dell'Oca Principal Cloud Architect @Veeam
Virtual To The Core Virtual To The Core

Virtualization blog, the italian way.

  • Media
  • About me
Virtual To The Core
Virtual To The Core

Virtualization blog, the italian way.

[EN] Permissions for snapshots management

Luca Dell'Oca, November 21, 2011December 4, 2016

Some weeks ago, a customer has reverted by mistake a snapsoht taken on a domain controller, that was some months old… Obviously Active Directory, replicated on another VM, has started working badly, and it took us several days f hard work on the AD database (using adsiedit and other tools…) to make everything work again.

That case showed again the importance of assigning limited rights to cVenter users, and avoid using always the original administrator user. Some activities like snapshots management, if not clearly known by the sysadmin, can lead to painful damages.

Also, vCenter has some pre-configured roles, easily assignable to users. About snapshots, obviously Administrator is authorized to manage snapshots completely:

Using instead a role like Virtual Machine User, we will remove the ability to manage snapshots (and to do damage!):

Finally, besides preconfigured roles, we can create our own roles enabling/disabling the options.

Share this:

  • Twitter
  • Facebook
  • LinkedIn
  • Email
  • Tumblr
  • Pinterest
  • Reddit
  • WhatsApp
  • Pocket
Tech permissionsrevertsnapshots

Post navigation

Previous post
Next post

Search

Sponsors

Latest Posts

  • My Automated Lab project: #2 Create a Ubuntu template in VMware vSphere with Packer
  • My Automated Lab project: #1 Install and configure the needed tools
  • Calculate space savings of a XFS volume with reflink and Veeam fast clone
  • A new whitepaper: Veeam Backup & Replication V12 enhanced security and scalability with object storage Secure Mode
  • Enable EVC mode in an existing vSphere Cluster with VCSA and VSAN in it
©2023 Virtual To The Core | WordPress Theme by SuperbThemes