To configure vSphere Lifecycle Manager settings and to use successfully vSphere Lifecycle Manager baselines and images, you must have the proper privileges.

You can assign vSphere Lifecycle Manager privileges to different roles from the vSphere Lifecycle Manager client interface in the vSphere Client.

vSphere Lifecycle Manager Privileges For Using Images

When you use vSphere Lifecycle Manager images, you need a different set of privileges for each task.

Table 1. VMware vSphere vSphere Lifecycle Manager Privileges For Using Images
Task Required Privileges
Set Up Image
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
Import Image
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
  • Upload File.Upload File
Export Image VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
Edit Image
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
Work with Recommendations
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
Work with Depot
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Write
Manage Depot Overrides
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Write
Check Compliance VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
Run Remediation Pre-Check
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: General Privileges.Read
  • VMware vSphere Lifecycle Manager.ESXi Health Perspectives.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Remediation Privileges.Read
Remediate Against an Image
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: General Privileges.Read
  • VMware vSphere Lifecycle Manager.ESXi Health Perspectives.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Remediation Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Remediation Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
Edit Remediation Settings
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Write
Update Firmware
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Read
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Image Privileges.Write
  • VMware vSphere Lifecycle Manager.Lifecycle Manager: Settings Privileges.Read
View Hardware Compatibility VMware vSphere Lifecycle Manager.Lifecycle Manager: Hardware Compatibility Privileges.Access Hardware Compatibility

For more information about managing users, groups, roles, and permissions, see the vSphere Security documentation.

vSphere Lifecycle Manager Privileges For Using Baselines

Each of the vSphere Lifecycle Manager privileges that you need to use baselines and baseline groups covers a distinct functionality.

Table 2. VMware vSphere Lifecycle Manager Privileges For Using Baselines
Task Privilege Description
Configure Configure.Configure Service Configure the vSphere Lifecycle Manager service and the scheduled patch download task.
Manage Baseline Manage Baselines.Attach Baseline Attach baselines and baseline groups to objects in the vSphere inventory.
Manage Baselines.Manage Baselines Create, edit, or delete baselines and baseline groups.
Manage Patches and Upgrades Manage Patches and Upgrades.Remediate to Apply Patches, Extensions, and Upgrades Remediate virtual machines and hosts to apply patches, extensions, or upgrades. In addition, this privilege allows you to view the compliance status of objects.
Manage Patches and Upgrades .Scan for Applicable Patches, Extensions, and Upgrades Scan virtual machines and hosts to search for applicable patches, extensions, or upgrades.
Manage Patches and Upgrades .Stage Patches and Extensions Stage patches or extensions to hosts. In addition, this privilege allows you to view the compliance status of hosts.
Manage Patches and Upgrades .View Compliance Status View baseline compliance information for an object in the vSphere inventory.
Upload File Upload File.Upload File Upload upgrade images and offline patch bundles.

For more information about managing users, groups, roles, and permissions, see the vSphere Security documentation.