With role-based access control (RBAC), you can restrict system access to authorized users. Users are assigned roles and each role has specific permissions.

There are four types of permissions:

  • CRUD (Create, Retrieve, Update and Delete)

  • Execute

  • Read

  • None

NSX Cloud has the following built-in roles. You cannot add any new roles.

  • Cloud Service Administrator

  • Cloud Service Auditor

Roles and Permissions

Table 1. Roles and Permissions

NSX-T Operation

Cloud Service Admin

Cloud Service Auditor

Tools > Port Connection

E

R

Tools > Traceflow

E

R

Tools > Port Mirroring

CRUD

R

Tools > IPFIX

CRUD

R

Firewall

CRUD

R

Routing > Routers

CRUD

R

Routing > NAT

CRUD

R

DDI > DHCP > Server Profiles

CRUD

R

DDI > DHCP > Servers

CRUD

R

DDI > DHCP > Relay Profiles

CRUD

R

DDI > DHCP > Relay Services

CRUD

R

Switching > Switches

CRUD

R

Switching > Ports

CRUD

R

Switching > Switching Profiles

CRUD

R

Fabric > Nodes > Hosts

R

R

Fabric > Nodes > Edges

R

R

Fabric > Nodes > Edge Clusters

R

R

Fabric > Nodes > Transport Nodes

R

R

Fabric > Profiles > Uplink Profiles

R

R

Fabric > Profiles > Edge Cluster Profiles

R

R

Fabric > Profiles > Configuration

R

R

Fabric > Transport Zones

R

R

Fabric > Compute Managers

R

R

System > Utilities > Support Bundle

R

R