SDDC Manager uses roles and rights to determine what operations a user can perform using SDDC Manager. SDDC Manager includes a number of predefined roles with specific rights.

System administrators must assign a role to each user or group before that user or group can log in to the SDDC Manager Dashboard and access operations.

Two predefined roles are provided by default: an administrator-level role and a read-only role. The administrator-level role grants all rights to perform SDDC Manager operations. The read-only role grants read-only rights.

An auditor can use the predefined read-only role to view security and non-security configurations and logs.

The predefined roles cannot be modified.

To view the rights granted by one of the predefined roles, navigate to User Management > Roles & Permissions and select the role name that is displayed.