Service Role Design for VMware Aria Automation Orchestrator for Private Cloud Automation for VMware Cloud Foundation

You manage access to VMware Aria Automation Orchestrator by assigning enterprise groups to service roles in your organization.

VMware Aria Automation Orchestrator has two service roles assigned from identity and access management. You assign the service roles to designated enterprise groups, synchronized from your enterprise identity source through the clustered Workspace ONE Access instance.

Table 1. Service Role Assignments for VMware Aria Automation Orchestrator in VMware Aria Automation
Role	Description
Orchestrator administrator	Read and write access to the Orchestrator user interface and API to manage services and all objects.
Orchestrator workflow designer	Access to the VMware Aria Automation Orchestrator user interface to design workflows.

For information about the service role design decisions on the VMware Aria Automation Orchestrator service, see Identity Management Design for Private Cloud Automation for VMware Cloud Foundation.