Reference Guide
Table Of Contents
- OpenManage Integration for VMware vCenter version 5.3 Security Configuration Guide
- Figures
- Tables
- PREFACE
- Terms used in this document
- Deployment models
- Product and Subsystem Security
- Security controls map
- Authentication
- Login security settings
- Authentication types and setup considerations
- User and credential management
- Network security
- Data security
- Cryptography
- Auditing and logging
- Serviceability
- OMIVV OS update
- Product code integrity
- Miscellaneous Configuration and Management
Required privileges for non-administrator users
To register OMIVV with vCenter, a non-administrator user must have the following privileges:
While registering a vCenter server with OMIVV by a non-administrator user, a message is displayed if the following privileges are
not assigned:
● Alarms
○ Create alarm
○ Modify alarm
○ Remove alarm
● Extension
○ Register extension
○ Unregister extension
○ Update extension
● Global
○ Cancel task
○ Log event
○ Settings
● Health Update Provider
○ Register
○ Unregister
○ Update
● Host
○ CIM
■ CIM Interaction
● Host.Config
○ Advanced settings
○ Change Settings
○ Connection
○ Maintenance
○ Network configuration
○ Query patch
○ Security profile and firewall
● Inventory
○ Add host to cluster
○ Add standalone host
○ Modify cluster
● Lifecycle Manager: General Privileges
○ Read
NOTE: The vSphere Lifecycle Manager General Privileges are applicable only for vCenter 7.0 and later.
● Host profile
○ Edit
○ View
● Permissions
○ Modify permission
○ Modify role
● Sessions
○ Validate session
● Task
○ Create
○ Update
NOTE:
If a vCenter server is registered using non-administrator user to access any OMIVV features, non-administrator user
must have Dell privileges. For more information about assigning Dell privileges, see Assign Dell privileges to existing role on
page 15.
14 Product and Subsystem Security