Assign the permissions to the service account svc-vrops-nsx that are required to access monitoring data from the NSX Manager in vRealize Operations Manager.
Procedure
- Log in to the NSX Manager by using a Secure Shell (SSH) client.
- Open an SSH connection to the NSX Manager virtual machine.
NSX Manager |
Host name |
NSX Manager for the ROBO cluster |
nyc01r01nsx01.rainpole.local |
- Log in using the following credentials.
Setting |
Value |
User name |
admin |
Password |
nsx_manager_admin_password |
- Create the svc-vrops-nsx local service account on the NSX Manager instance.
- Run the following command to switch to Privileged mode of NSX Manager.
- Enter the admin password when prompted and press Enter.
- Switch to Configuration mode.
- Create the svc-vrops-nsx service account .
user svc-vrops-nsx password plaintext svc-vrops-nsx_password
- Assign the svc-vrops-nsx user access to NSX Manager from the vSphere Web Client.
user svc-vrops-nsx privilege web-interface
- Commit these updates to the NSX Manager.
- Exit Configuration mode.
- Assign the security_admin role to the svc-vrops-nsx service account.
- Log in to the Windows host that has access to your data center.
- Run the Postman application and log in.
- Select POST from the drop-down menu that contains the HTTP request methods.
- In the URL text box next to the selected method, enter the following URL.
NSX Manager |
POST URL |
NSX Manager for ROBO cluster |
https://nyc01r01nsx01.rainpole.local/api/2.0/services/usermgmt/role/svc-vrops-nsx?isCli=true |
- On the Authorization tab, configure the following authorization settings and click Update Request.
Setting |
Value |
Type |
Basic Auth |
User name |
admin |
Password |
nsx_manager_admin_password |
- On the Headers tab, enter the following header details.
Setting |
Value |
Key |
Content-Type |
Value |
text/xml |
- In the Body tab, select raw, paste the following request in the Body text box and click Send.
<accessControlEntry>
<role>security_admin</role>
<resource>
<resourceId>globalroot-0</resourceId>
</resource>
</accessControlEntry>
The Status changes to 204 No Content.