This privilege determines who can perform certificate management for ESXi hosts. See Required Privileges for Certificate Management Operations in the Platform Services Controller Administration documentation for information on vCenter Server certificate management.

You can set this privilege at different levels in the hierarchy. For example, if you set a privilege at the folder level, you can propagate the privilege to one or more objects within the folder. The object listed in the Required On column must have the privilege set, either directly or inherited.