Installation guide

ManualsBrandsVMware ManualsComputer equipmentVCENTER SERVER 4.0 - UPGRADE GUIDE UPDATE 1

This chapter includes the following topics:

“Datastore Privileges,” on page 50

“Network Privileges,” on page 50

“Update Datastore Permissions,” on page 51

“Update Network Permissions,” on page 52

Datastore Privileges

In VMware vSphere 4.0 and higher, datastores have their own set of access control privileges. As a result, you

might need to reconfigure your permissions to grant the new datastore privileges. This is required if you have

nonpropagating Read-only permission set on the datacenter for users.

Table 7-2 lists the default datastore privileges that, when selected for a role, can be paired with a user and

assigned to a datastore.

Table 7-2. Datastore Privileges

Privilege Name Actions Granted to Users Affects

Pair with

Object

Effective on

Object

Allocate Space Allocate space on a datastore for a virtual

machine, snapshot, or clone.

hosts, vCenter

Servers

datastores datastores,

virtual disks

Browse Datastore Browse files on a datastore, including CD-

ROM or Floppy media and serial or parallel

port files. In addition, the browse datastore

privilege allows users to add existing disks

to a datastore.

hosts, vCenter

Servers

datastores datastores,

datastore folders,

hosts, virtual

machines

Delete Datastore Remove a datastore. hosts, vCenter

Servers

datastores datastores,

datastore folders

Delete Datastore

File

Delete a file in the datastore. hosts, vCenter

Servers

datastores datastores

File Management Carry out file operations in the datastore

browser.

hosts, vCenter

Servers

datastores datastores

Move Datastore Move a datastore between folders in the

inventory.

NOTE Privileges are required on both the

source and destination objects.

vCenter Servers datastore,

source and

destination

object

datastores,

datastore folders

Rename Datastore Rename a datastore. hosts, vCenter

Servers

datastores datastores

Network Privileges

In VMware vSphere 4.0 and higher, networks have their own set of access control privileges. As a result, you

might need to reconfigure your permissions to grant the new network privileges. This is required if you have

nonpropagating Read-only permission set on the datacenter.

Table 7-3 lists the default network privileges that, when selected for a role, can be paired with a user and

assigned to a network.

vSphere Upgrade Guide

50 VMware, Inc.