Distributed Switch privileges control the ability to perform tasks related to the management of Distributed Switch instances.
You can set this privilege at different levels in the hierarchy. For example, if you set a privilege at the folder level, you can propagate the privilege to one or more objects within the folder. The object listed in the Required On column must have the privilege set, either directly or inherited.
| Privilege Name in the vSphere Client | Description | Required On | Privilege Name in the API |
|---|---|---|---|
| Create | Allows creation of a distributed switch. |
Data centers, Network folders |
DVSwitch.Create |
| Delete | Allows removal of a distributed switch. To have permission to perform this operation, a user or group must have this privilege assigned in both the object and its parent object. |
Distributed switches |
DVSwitch.Delete |
| Host operation | Allows changing the host members of a distributed switch. |
Distributed switches |
DVSwitch.HostOp |
| Modify | Allows changing the configuration of a distributed switch. |
Distributed switches |
DVSwitch.Modify |
| Move | Allows moving a vSphere Distributed Switch to another folder. |
Distributed switches |
DVSwitch.Move |
| Network I/O control operation | Allow changing the resource settings for a vSphere Distributed Switch. |
Distributed switches |
DVSwitch.ResourceManagement |
| Policy operation | Allows changing the policy of a vSphere Distributed Switch. |
Distributed switches |
DVSwitch.PolicyOp |
| Port configuration operation | Allow changing the configuration of a port in a vSphere Distributed Switch. |
Distributed switches |
DVSwitch.PortConfig |
| Port setting operation | Allows changing the setting of a port in a vSphere Distributed Switch. |
Distributed switches |
DVSwitch.PortSetting |
| VSPAN operation | Allows changing the VSPAN configuration of a vSphere Distributed Switch. |
Distributed switches |
DVSwitch.Vspan |
