With vSphere 6.0 and later, you can add users to the exception users list by using the VMware Host Client. These users do not lose their permissions when the host enters lockdown mode. You can add service accounts, such as a backup agent to the exception users list.
Note: The exception users list is useful for service accounts that perform specific tasks, such as host backups, and not for administrators. Adding administrator users to the exception users list defeats the purpose of lockdown mode.
Procedure
- Click Manage in the VMware Host Client inventory and click Security & Users.
- Click Lockdown mode.
- Click Add user exception, enter the name of the user, and click Add exception.
- (Optional) Select a name from the exception users list, click Remove user exception, and click Confirm.