Before you can use the tenant portal to work with the distributed firewall capabilities on an organization virtual datacenter, the distributed firewall must be enabled for that organization virtual datacenter. A vCloud Director system administrator or a user granted the ORG_VDC_DISTRIBUTED_FIREWALL_ENABLE right can enable the distributed firewall on an organization virtual datacenter.
About this task
You use the Distributed Firewall screen in the tenant portal to enable the distributed firewall for an organization virtual datacenter.
Verify that the organization to which the organization virtual datacenter belongs has the following rights assigned to it:
Organization vDC Distributed Firewall: Enable/Disable
Organization vDC Distributed Firewall: Configure Rules
Organization vDC Distributed Firewall: View Rules
The vCloud Director system administrator assigns rights to an organization. The Organization vDC Distributed Firewall: Enable/Disable right is required for enabling the distributed firewall using the tenant portal's user interface. The Organization vDC Distributed Firewall: View Rules right is required for viewing the firewall rules in the tenant portal and the Organization vDC Distributed Firewall: Configure Rules right is required for configuring the firewall rules using the tenant portal.
Verify that you have an assigned role that grants you the right named Organization vDC Distributed Firewall: Enable/Disable. Of the pre-defined roles in a vCloud Director system, only the System Administrator role has that right by default.
- In the Tenant Portal, go to and select the organizational virtual datacenter for which you want to configure distributed firewall rules.
- Click Enable Distributed Firewall.
After the distributed firewall is enabled, the screen displays a Configure Services button that allows you edit distributed firewall rules.
What to do next
For a description of the default distributed firewall rule, see Manage Distributed Firewall Rules Using the Tenant Portal.