Each user must have a unique account with one or more roles assigned to enforce a role-based security when they use vRealize Operations Cloud. Contact your organization owner to create user accounts for vRealize Operations Cloud. Once created, you can assign the account to be a member of one or more user groups to allow the user to inherit the roles and objects associated with the user group.

Where You Find the Access Control Options

You can manage user accounts and their associated user groups, roles, and passwords.

In the menu, click Administration, and then click Access > Access Control .

Table 1. Access Control Tabs
Option Description

User Accounts

Edit vRealize Operations Cloud user accounts and manage user roles, their membership in groups, and the objects assigned for association with the user.

vCenter Server users who are logged in to vRealize Operations Cloud, either logged in directly or through the vSphere Client, appear in the list of user accounts.

User Groups

Add, edit, delete, or clone vRealize Operations Cloud user groups, update the members in a group and the associated objects that they can access.


For users to perform actions in vRealize Operations Cloud, they must be assigned specific roles. With role-based access, when you assign a role to a user, you are determining not only what actions the user can perform in the system, but also the objects upon which those actions can be performed while holding the role. For example, to import or export a policy, the role assigned to your user account must have the Import or Export permissions enabled for policy management.