Datastore privileges control the ability to browse, manage, and allocate space on datastores.
You can set this privilege at different levels in the hierarchy. For example, if you set a privilege at the folder level, you can propagate the privilege to one or more objects within the folder. The object listed in the Required On column must have the privilege set, either directly or inherited.
| Privilege Name in the vSphere Client | Description | Required On | Privilege Name in the API |
|---|---|---|---|
| Allocate space | Allows allocating space on a datastore for a virtual machine, snapshot, clone, or virtual disk. | Data stores |
Datastore.AllocateSpace |
| Browse datastore | Allows browsing files on a datastore. |
Data stores |
Datastore.Browse |
| Configure datastore IO management | Allows configuring Storage I/O Control. | Data stores |
Datastore.ConfigIOManagement |
| Configure datastore | Allows configuration of a datastore. | Data stores |
Datastore.Config |
| Low level file operations | Allows performing read, write, delete, and rename operations in the datastore browser. | Data stores |
Datastore.FileManagement |
| Move datastore | Allows moving a datastore between folders. Privileges must be present at both the source and destination. |
Datastore, source and destination | Datastore.Move |
| Remove datastore | Allows removal of a datastore. This privilege is deprecated. To have permission to perform this operation, a user or group must have this privilege assigned in both the object and its parent object. |
Data stores |
Datastore.Delete |
| Remove file | Allows deletion of files in the datastore. This privilege is deprecated. Assign the Low level file operations privilege. |
Data stores |
Datastore.DeleteFile |
| Rename datastore | Allows renaming a datastore. |
Data stores |
Datastore.Rename |
| Update virtual machine files | Allows updating file paths to virtual machine files on a datastore after the datastore has been resignatured. | Data stores |
Datastore.UpdateVirtualMachineFiles |
| Update virtual machine metadata | Allows updating virtual machine metadata associated with a datastore. | Data stores |
Datastore.UpdateVirtualMachineMetadata |
