Users with restricted access to OVDCs can see networks from other OVDCs
Article ID: 416399
Updated On:
Products
VMware Cloud Director
Issue/Introduction
- In VMware Cloud Director (VCD), users with restricted access to specific Organization Virtual Data Centers (OVDCs) within a single Organization are able to see networks from other OVDCs in the same Organization under the "Networking" menu.
- While users can see the networks from other OVDCs to which they do not have access, they cannot edit or use them in vApps.
Environment
VMware Cloud Director 10.6.x
Cause
OVDC access control settings are currently not scoped to take network level objects into consideration. Both networks and Edge Gateways are considered Tenant (Organization) level elements in the current implementation and are not tied to OVDC access control settings.
Resolution
- This is currently expected behaviour in Cloud Director 10.6.x and there is no resolution available to restrict network visibility per OVDC for the affected users.
- If a different outcome is desired, it would require submitting a feature request for product enhancement.
Note: Subscribe to this KB article to receive updates on progress and future changes.
Additional Information
Feedback
Yes
No
Powered by
