You can import users from a previously-configured LDAP identity provider and assign them the DSM Admin and DSM User roles in VMware Data Services Manager. You can use the vSphere Client to perform this task.
Perform the following procedure to import users from the directory and assign them an appropriate role.
Procedure
- In the vSphere Client, navigate to vCenter Server, click the Configure tab, and click Permissions under Data Services Manager.
This action displays the
Permissions view that you use to create and manage the users.
- Click DIRECTORY SERVICE GROUPS.
This action displays a table that lists the configured users.
- Click Create.
The
Create Permission form opens.
- Map the group to a specific role.
Property Name |
Value |
Role |
The user's role in the organization. You can select one of the following options:
- DSM Admin - Super user that is able to watch and help maintain all of the data services created.
- DSM User - Creates and maintains individual databases for their application or other purpose.
|
Directory Service Group |
The groups whose users you want to assign the specified role. |
- Click CREATE
The specified user group is added to the table.
Users that belong to this group can access the DSM console. After they perform this operation, their name appears on the list of local DSM users with LDAP as a user type.
Unlike regular local DSM users, the imported LDAP users cannot be edited or deleted from this list.
Results
You can later change the role assignment for the user group, or delete the group.