Create a user role in the vSphere Web Client with the required privileges for vRealize Suite Lifecycle Manager. 

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://sfo01m01vc01.sfo01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. On the Home page, under Administration, click Roles.
  3. Create a role for all application-to-application interactions between vRealize Suite Lifecycle Manager and vSphere.
    1. On the Roles page, click the Create Role action icon.
    2. In the Create Role dialog box, configure the role using the following configuration settings, and click OK.

      Setting

      Value

      Role Name

      vRealize Suite Lifecycle Manager User

      Privilege

      • Datastore.Allocate Space

      • Datastore.Browse Datastore

      • Datastore.Update Virtual Machine Files

      • Host.Local.Operations.Add Host to vCenter

      • Host.Local.Operations.Create Virtual Machine

      • Host.Local.Operations.Delete Virtual Machine

      • Host.Local.Operations.Reconfigure Virtual Machine

      • Network.Assign Network

      • Resource.Assign vApp to Resource Pool

      • Resource.Assign Virtual Machine to Resource Pool

      • vApp.* (All privileges.)

      • Virtual Machine.* (All privileges.)

      This role inherits the System.Anonymous, System.View, and System.Read privileges. 

  4. The Management vCenter Server propagates the role to the other linked vCenter Server instances.