2.5
Table Of Contents
- VMware vFabric Data Director Administrator and User Guide
- Contents
- About VMware vFabric Data Director Administrator and User Guide
- VMware vFabric Data Director Overview
- Managing Data Director Resources
- Resource Management Overview
- Resource Bundles and Resource Pools
- System Resource Bundle
- Resource Assignment
- vSphere Resource Pools and Data Director
- Viewing Resource Information
- Create the System Resource Pool
- Create the System Resource Bundle
- Monitor Resource Usage
- Create a Resource Pool
- Create a Resource Bundle
- Assign a Resource Bundle to an Organization
- Perform Advanced Cluster Configuration
- Managing Users and Roles
- Building DBVMs and Base DB Templates
- Database Virtual Machine OVA Files
- Deploy a DBVM OVA File
- Build a SLES and Oracle Base Database Virtual Machine
- Build a Custom RHEL and Oracle Database Template
- Deploy the base database VM into the System Resource Pool
- Repackage the Linux ISO Image
- Install Linux on a Blank Virtual Machine
- Initialize the Virtual Machine to Make It Oracle and Data Director Compliant
- Install Oracle 11g R2 Software
- Convert a Base DBVM into a Base DB Template
- Validate a Base DB Template
- Assign a Base DB Template to a Resource Bundle
- Install the Operating System and Database Software in a Blank DBVM
- Requirements for the Kickstart File
- Database Update Configuration
- Configure a vFabric Postgres Update Chain
- Update an Oracle Database
- Identify Existing Target DBVM
- Create a Base Database VM from an Existing Template
- Apply a Patch to the Base Database Virtual Machine
- Convert a Base DBVM into a Base DB Template
- Validate a Base DB Template
- Assign a Base DB Template to a Resource Bundle
- Enable a Base DB Template
- Configure an Oracle Update Chain
- Update a Database
- Managing Organizations
- IP Whitelists
- Managing Database Groups
- Managing Database Templates
- Managing Databases
- Database Lifecycle
- Requirements for Creating Databases
- Database Creation
- Using Tags
- Managing the Organization Catalog
- Batch Operations and Scheduled Tasks
- Updating Databases
- Database Administration
- Cloning Databases
- Managing Database Entities
- Safeguarding Data
- Backup Strategies
- Backup Types
- Backup Template Settings
- Preconfigured Backup Templates
- Select a Database Backup Template
- Schedule Regular Database Backups
- Recover a Database
- Import Backups
- Use VMware Data Recovery to Back Up Data Director
- Database End of Life and Backups
- Perform Point-in-time Recovery of Management Server Database
- Add Pre-Action and Post-Action Scripts to the DBVM for Selected Agents
- Monitoring the Data Director Environment
- Managing Licenses
- IP Pool Management
- VMware vCloud Director Integration
- Reconfiguring Data Director Networks
- Change the vCenter IP Address
- Reconfigure the Web Console Network Mapping or Network Adapter
- Reconfigure the vCenter Network Mapping
- Reconfigure the vCenter Network Adapter Settings
- Reconfigure the DB Name Service Network or DB Name Service Network Adapter
- Reconfigure the Internal Network or Internal Network Adapter Mapping
- Verify Network Settings in Data Director
- Reconfigure the Database Access Network Used by a Database Group
- Modify IP Pool Settings
- Managing SSL Keys and Certificates
- Regenerate Management Server Key and Certificate
- Import Management Server Key and Certificate
- Edit Management Server Certificate
- Regenerate DB Name Server Key and Certificate
- Import DB Name Server Key and Certificate
- Edit DB Name Server Certificate
- Regenerate DBVM Key and Certificate
- Import DBVM Key and Certificate
- Edit DBVM Certificate
- Data Director Troubleshooting
- Index
Managing Users and Roles 3
User management controls the users that can log in to Data Director and what they can see and do after they
log in.
This chapter includes the following topics:
n
“User Management Overview,” on page 27
n
“Authenticating Users,” on page 28
n
“Role-Based Access Control,” on page 29
n
“Predefined Roles,” on page 30
n
“Privileges,” on page 31
n
“Propagation of Permissions and Roles,” on page 32
n
“Organization Privileges and Permissions,” on page 32
n
“Add Users to Your Organization,” on page 33
n
“Add Roles to an Organization,” on page 33
n
“Grant a Permission to a User,” on page 34
n
“Modify Organization Security Settings,” on page 34
User Management Overview
System and organization administrators use a combination of user logins, privileges, permissions, and roles
(role-based access control) to manage Data Director users. Role-based access control provides management of
users and the tasks that they can perform on objects. You can grant and revoke roles and permissions at the
system level, on organizations, and on database groups, databases, and templates within organizations.
Roles are sets of permissions required to perform particular jobs. Jobs are sets of tasks that a user with a
particular role is responsible for performing, such as the set of tasks that are the responsibility of a database
administrator. System and organization administrators define roles as part of defining security policies, and
grant the roles to users. To change the permissions and tasks associated with a particular job, the system or
organization administrator updates the role settings. The updated settings take effect for all users associated
with the role.
n
To add a user to a job, the system or organization administrator grants the role to the user.
n
To remove a user from a job, the system or organization administrator revokes the role from the user.
Changes are effective immediately.
VMware, Inc.
27