Understanding user roles and access rights
search cancel

Understanding user roles and access rights

book

Article ID: 339506

calendar_today

Updated On:

Products

VMware

Issue/Introduction

This article discusses the impact various access rights have on Dashboard functionality.

Symptoms:

configure-dashboard-permissions

Environment

VMware Capacity Planner 2.6.x
VMware Capacity Planner 2.5.x

Resolution

Introduction to the Access Roles Schema

Access roles are assigned on a per-assessment (Company ID) basis to each user. Each role must be explicitly defined to form an Access Control List (ACL). This model allows any user to be given a role in any Company ID by using the Guest Roles / Invite Guest function. This allows one user name to be give access to any number of assessments without creating multiple users for that person.
Capacity Planner 2.6 does not provide an inheritance model. For example, there is a Partner ID with two users, one is Admin and one is Power. If the user with Power is given access to a second Company ID (using the Invite Guest feature) as Admin, the original Admin from the Partner ID does not inherit any rights to the second Company ID. Any rights must be explicitly defined.
When a Company ID is newly created, the creator of the Company ID is assigned an Admin role on the Company ID. All other users needing access must be explicitly defined after creation.
The following roles are available. The roles setting affects which menus and options are available to a user for the Company ID.
For instructions on using roles in Capacity Planner, see Dashboard User's Guide.

None

  • The user has no access to any objects, or reports on the Company ID
  • Setting a user's role to none may prevent the user from logging in if the user has no rights on any other Company ID

Read Only

  • The user has access to reports, scenarios, notifications and dashboards.
  • The user can only view existing reports and scenarios but not run them or create new reports.
  • The user can not see or change collector registration information.
  • The user can not modify the managed systems list, modify active servers or isolation.
  • The user can not see the users list or see or modify guest roles.
  • The user can not see or change system groups.

Power

  • The user has access to all reports, scenarios, notifications and dashboards.
  • The user can create, run and delete reports and scenarios.
  • The user can see and change collector registration information.
  • The user can modify the managed systems list, modify active servers and isolation.
  • The user can not see the users list or see or modify guest roles.
  • The user can see and change system groups.

Admin

  • The user has access to all reports, scenarios, notifications and dashboards.
  • The user can create, run and delete reports and scenarios.
  • The user can see and change collector registration information.
  • The user can modify the managed systems list, modify active servers and isolation.
  • The user can see and edit the users list and guest roles.
  • The user can see and change system groups.


Additional Information

For additional information related to being unable to log in to the dashboard, see: