Administrator account does not permission to change the roles on the supervisor namespaces

search cancel

Administrator account does not permission to change the roles on the supervisor namespaces

book

Article ID: 415200

calendar_today

Updated On:

Products

VMware vCenter Server

Issue/Introduction

While trying to change the roles of the Supervisor namespaces as the administrator@<vc domain>.local which is the admin account that created vcenter from VCF 9 the customer had a "Permission to perform this operation was denied. You do not hold privileges"

Environment

VKS on vCenter 9 in vCF 9.0

Cause

The "Administrator" role does not translate to "Supervisor Administrator" due to containerized permissions.

To provide the user, "Supervisor Administrator" role on the Supervisor cluster, the user can either added to the "Administrators" group or assigned the "Supervisor Administrator" role on the Supervisor.

Resolution

1. In vCenter Inventory, right click on the Supervisor cluster and choose Add Permissions

2. To provide the user, "Supervisor Administrator" role on the Supervisor cluster, the user can either added to the "Administrators" group or assigned the "Supervisor Administrator" role on the Supervisor.

3. Test and confirm that the the user now has privieges.

Additional Information

Also refer the Authentictaton/Authorization guide for details

Feedback

thumb_up Yes

thumb_down No