The folowing table provides a brief description of the terms Privilege, Role, and Permission.
Term | Description |
---|---|
Privilege | Authority to perform a specific operation on a particular type of resource. Each operation type is associated with a set of privileges. For example, the NF package modifies privilege links together with the network function package that has delete and modify operations. |
Role | A group of privileges. Roles simplify the process of granting and managing privileges by categorizing them into logical and functional sets. TCA supports both built-in and user-defined roles. For example, the Virtual Infrastructure Administrator role allows a user to read, add, edit, and delete VIMs. This role also allows the user to perform all the life-cycle management operations on a Kubernetes cluster template and a Kubernetes cluster instance. |
Permission | Possession of a role over a set of access-controlled resources. |
Access-controlled resource | Any digital asset, data, operation, or functionality that is protected and regulated by an access-control mechanism. For example, a VIM, a network function instance, or an audit log entry. |
As a vCenter Server user, when you configure vCenter Server in the VMware Telco Cloud Automation appliance, you are assigned the System Administrator role to access VMware Telco Cloud Automation. Use this role to create roles and permissions for your users.
A System Administrator or a Role Administrator of VMware Telco Cloud Automation manages the roles and permissions of users.