Create a vSphere Replication user who can modify the replication infrastructure, but cannot register additional vSphere Replication servers.

Prerequisites

  • Verify that you have a replication site.
  • Verify that you have another user account to which you can assign the modified privileges.

Procedure

  1. Log in to the vSphere Client.
  2. On the home page, click Administration and click Roles.
  3. Select the VRM Administrator role and click the Clone role action icon.
  4. In the cloned role, deselect the VRM Remote > VR Server > Manage VR Server privilege.
  5. Navigate to the vCenter Server instance.
  6. On the Permissions tab, click the Add permission icon.
  7. Select the user that must have the privileges defined by the selected role.
  8. Select the cloned VRM Administrator role from the Assigned Role drop-down menu.
  9. Select the Propagate to children check box.

Results

Trying to register a vSphere Replication server results in the error message Permission to perform this operation was denied.