Privileges Required for the vCenter Server User Without Instant Clones

The vCenter Server user must have sufficient vCenter Server privileges to enable Horizon to perform operations in vCenter Server. Create a Horizon Administrator role for the vCenter Server user with the required privileges. These privileges are only applicable if you do not intend to use instant clones.

Table 1. Minimum vCenter Server Privileges Required for the Horizon Administrator Role Without Instant Clones
Privilege Group	Privileges to Enable
Folder	Create Folder Delete Folder
Datastore	Allocate space
Virtual Machine	In Configuration: Add or remove device Advanced Modify device settings In Interaction: Power Off Power On Reset Suspend Perform wipe or shrink operations In Inventory: Create new Create from existing Remove In Provisioning: Customize Deploy template Read customization specifications Clone Template Clone Virtual Machine
Resource	Assign virtual machine to resource pool
Global	Act as vCenter Server The vCenter Server user requires this privilege even if you do not use View Storage Accelerator.
Host	The following Host privilege is required to implement View Storage Accelerator, which enables ESXi host caching. If you do not use View Storage Accelerator, the vCenter Server user does not need this privilege. In Configuration: Advanced settings
Profile Driven Storage (If you are using vSAN datastores or Virtual Volumes)	(all)