SCVMM R2 Operations Management Seven: Introduction to User Roles

Source: Internet
Author: User
Tags ntfs permissions

SCVMM R2 Operations Management Seven: Introduction to User Roles

You can create user roles in Virtual machine Manager (VMM) to define the objects that users can manage and the administrative actions that users can perform. This is just like some of the corresponding permission restrictions in NTFS permissions, there are five user roles in SCVMM R2, namely: Administrator, delegated administrator, read-only administrator, tenant Administrator, and application administrator, and below we describe the characteristics of five types of administrators:

1. Administrator:

Members of the Administrator user role can perform all administrative operations on all objects that are managed by VMM.

The administrator is solely responsible for these features of VMM:

1. Only administrators can add stand-alone XenServer hosts and XenServer clusters (called pools) to VMM management.

2. Only administrators can add Windows Server update Services (WSUS) servers to VMM so that the VMM fabric can be updated through VMM.

2. Delegated administrator:

Members of the delegated administrator user role can perform all administrative tasks (except tasks for adding XenServer and adding WSUS servers) within the host group, cloud, and library servers for which they are assigned. Delegated administrators cannot modify VMM settings and cannot add or remove members of the Administrator user role.

3. Read-Only Administrator:

Read-Only Administrators can view the properties, status, and job status of objects within the host group, cloud, and library servers for which they are assigned, but cannot modify objects. Also, a read-only administrator can view the run as account that the administrator or delegated administrator has specified for the read-only administrator user role

4. Tenant Administrator:

In VMM in System Center Service R2, you can create the Tenant administrator user role.

Members of the Tenant Administrator user role can manage self-service users and VM networks. Tenant administrators can create, deploy, and manage their own virtual machines and services by using the VMM console or the Web portal. Tenant administrators can also specify which tasks self-service users can perform on their virtual machines and services. Tenant administrators can set quotas on compute resources and virtual machines.

5. Application Administrator:

Members of the self-service user role can create, deploy, and manage their own virtual machines and services by using the VMM console or the Web portal.

Five types of users are created as follows:

Click "Settings":

650) this.width=650; "height=" 369 "title=" clip_image002 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image002 "src=" http://s3.51cto.com/wyfs02/ M00/6f/54/wkiol1wz0tqtdgpkaad_fg3vgfc500.jpg "border=" 0 "/>

Click on "Create tab":

650) this.width=650; "height=" 416 "title=" clip_image004 "style=" margin:0px;border:0px;padding-top:0px; Padding-right:0px;padding-left:0px;background-image:none, "alt=" clip_image004 "src=" http://s3.51cto.com/wyfs02/ M01/6f/54/wkiol1wz0trxru96aadpbv4gety787.jpg "border=" 0 "/>

Enter a name and description and click Next:

650) this.width=650; "height=" 418 "title=" clip_image006 "style=" border:0px;padding-top:0px;padding-right:0px; Padding-left:0px;background-image:none, "alt=" clip_image006 "src=" http://s3.51cto.com/wyfs02/M02/6F/54/ Wkiol1wz0tqhwcdxaaebylp8nuu495.jpg "border=" 0 "/>

Here you can choose the type of our administrator!

OK, down here I will not do a demonstration, I believe the rest of the steps of a friend can easily walk the end.

If you grant permissions to a specific template to a user who does not have run as account permissions to configure the template, the user may be able to extract run as account credentials from the template.

In System Center R2, VMM administrators can use the Create User Roles Wizard to configure user roles through a set of allowed actions and global settings based on each cloud. These settings apply only to tenant administrators and self-service user roles. These settings allow users to perform effective operations on a given cloud as a combination of globally permissible operations and operations allowed by the cloud.

This article is from the "Wu Yuzhang Microsoft Blog" blog, reproduced please contact the author!

SCVMM R2 Operations Management Seven: Introduction to User roles

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.