Create a custom user role in the vSphere Client with the required privileges to enable vRealize Automation integration with vSphere.

Procedure

  1. In a Web browser, log in to vCenter Server by using the vSphere Client.
    Setting Value
    URL https://sfo01m01vc01.sfo01.rainpole.local/ui
    User name [email protected]
    Password vsphere_admin_password
  2. Select Menu > Administration.
  3. In the left pane, select Access control > Roles.
  4. From the Roles provider drop-down menu, select sfo01m01vc01.sfo01.rainpole.local.
  5. Create a role for vRealize Automation in vSphere.
    1. Click the Create role action icon, configure the privileges, and click Next.

      Category

      Privilege

      Content Library

      Add library item 

      Create local library

      Create subscribed library

      Delete library item

      Delete local library

      Delete subscribed library

      Download files 

      Evict library item

      Evict subscribed library

      Probe subscription information

      Read storage

      Sync library item

      Sync subscribed library

      Type introspection

      Update configuration settings

      Update files

      Update library

      Update library item

      Update local library

      Update subscribed library

      View configuration settings

      Datastore

      Allocate space

      Browse datastore

      Low level file operations

      Datastore Cluster

      Configure a datastore cluster

      Folder

      Create folder

      Delete folder

      Global

      Manage custom attributes

      Set custom attribute

      Network

      Assign network

      Permissions

      Modify permission

      Resource

      Assign virtual machine to resource pool

      Migrate powered off virtual machine

      Migrate powered on virtual machine

      Tags Assign or unassign vSphere tag
      Create a vSphere tag
      Create a vSphere tag category
      Delete vSphere tag
      Delete vSphere tag category
      Edit vSphere tag
      Edit vSphere tag category
      Modify UsedBy field for category
      Modify UsedBy field for tag

      Virtual Machine

      Change Configuration.Add existing disk

      Change Configuration.Add new disk

      Change Configuration.Add or remove device

      Change Configuration.Advanced configuration

      Change Configuration.Change CPU count

      Change Configuration.Change Memory

      Change Configuration.Change Settings

      Change Configuration.Change Swapfile placement

      Change Configuration.Change resource

      Change Configuration.Extend virtual disk

      Change Configuration.Modify device settings

      Change Configuration.Remove Disk

      Change Configuration.Rename

      Change Configuration.Set annotation

      Change Configuration.Toggle disk change tracking

      Edit Inventory.Create from existing

      Edit Inventory.Create new

      Edit Inventory.Move

      Edit Inventory.Remove

      Interaction.Configure CD media 

      Interaction.Connect devices

      Interaction.Console interaction

      Interaction.Install VMware Tools

      Interaction.Power off

      Interaction.Power on

      Interaction.Reset

      Interaction.Suspend

      Provisioning.Clone template

      Provisioning.Clone virtual machine

      Provisioning.Customize guest

      Provisioning.Deploy template

      Provisioning.Read customization specifications

      Snapshot management.Create snapshot

      Snapshot management.Remove snapshot

      Snapshot management.Revert to snapshot

      vApp

      Import

      vApp application configuration

    2. In the Role name text box, enter vRealize Automation to vSphere Integration and click Finish.
  6. Create a role for vRealize Orchestrator in vSphere.
    1. Select the Administrator role and click the Clone role action icon.
    2. In the Clone role dialog box, set the role name to vRealize Orchestrator to vSphere Integration and click OK.