Namespaces privileges control who can create and manage VMware vSphere® with VMware Tanzu™ namespaces.

You can set this privilege at different levels in the hierarchy. For example, if you set a privilege at the folder level, you can propagate the privilege to one or more objects within the folder. The object listed in the Required On column must have the privilege set, either directly or inherited.

Table 1. Namespaces Privileges
Privilege Name Description Required On
Namespaces.Modify cluster-wide configuration

Allows modifying the cluster-wide configuration, and enabling and disabling cluster namespaces.


Namespaces.Modify namespace configuration

Allows modifying namespace configuration options such as resource allocation and user permissions.