• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 387
  • Last Modified:

ESXi Permissions

Hi,
  I am having an issue with ESXi Permissions sticking. I have a single Host with 2 Resource pools. I have it joined to the Domain and have assigned permissions to 2 users just to one of the Resource Pools. I've done this on the ESXi 5.1 Host itself although it is connected to a vCenter Server. The reason I did this is the Host is in a Remote Office while the vCenter is in the Branch Office. I need the users to access the Host even if the connection to the vCenter Server is down. This seems to be working but every so many weeks the permissions are removed and there is nothing in the log about it. I have to reassign the permissions for the user to access the Resource pool and connect to the Console of the needed Servers.
0
CooleyAdmin
Asked:
CooleyAdmin
  • 3
  • 3
1 Solution
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
How are the permissions being added?
0
 
CooleyAdminAuthor Commented:
I connect directly to the ESXi 5.1 Host and add them directly to the Resource Pool via Right Click Add Permissions. So the 2 Users show as Defined "This Object" The other permissions that are always there are ones assigned on the Entire Host.
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
So you are not connecting to vCenter Server?
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
CooleyAdminAuthor Commented:
No I don't add the permission via vCenter Server cause the users connect directly to the host. I have them do this cause if for any reason they loose connection to vCenter I need them still to have the ability to console into the VMs in that Resource Pool. So although the Host is connected to vCenter the permissions are assigned directly to the Host via connecting to the host and assigning the permissions that way.
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
In that case, vCenter is probably resetting the permissions, because Access control, is supposed to be controlled via vCenter Server.

Adding permissions directly to ESXi Host is not supported when being Managed by vCenter Server, when you connect directly to ESXi, it states this!

So I would either

1. Manage via vCenter Server

2. Manage directly via ESXi Host and vSphere Client (and remove from vCenter Server)
0
 
CooleyAdminAuthor Commented:
Ahh OK I kinda felt that and was concerned that was the case. The permissions stick for awhile but do disappear eventually. Removing it from vCenter is not an option as this is required for our DR Solution. I may need to purchase another License of vCenter and run one in the Branch office or move my vCenter Server to that facility. Thanks for the confirmation
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now