ESXi Permissions

Posted on 2014-04-16
Last Modified: 2014-04-16
  I am having an issue with ESXi Permissions sticking. I have a single Host with 2 Resource pools. I have it joined to the Domain and have assigned permissions to 2 users just to one of the Resource Pools. I've done this on the ESXi 5.1 Host itself although it is connected to a vCenter Server. The reason I did this is the Host is in a Remote Office while the vCenter is in the Branch Office. I need the users to access the Host even if the connection to the vCenter Server is down. This seems to be working but every so many weeks the permissions are removed and there is nothing in the log about it. I have to reassign the permissions for the user to access the Resource pool and connect to the Console of the needed Servers.
Question by:CooleyAdmin
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
LVL 120
ID: 40003854
How are the permissions being added?

Author Comment

ID: 40003892
I connect directly to the ESXi 5.1 Host and add them directly to the Resource Pool via Right Click Add Permissions. So the 2 Users show as Defined "This Object" The other permissions that are always there are ones assigned on the Entire Host.
LVL 120
ID: 40003938
So you are not connecting to vCenter Server?
Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.


Author Comment

ID: 40003953
No I don't add the permission via vCenter Server cause the users connect directly to the host. I have them do this cause if for any reason they loose connection to vCenter I need them still to have the ability to console into the VMs in that Resource Pool. So although the Host is connected to vCenter the permissions are assigned directly to the Host via connecting to the host and assigning the permissions that way.
LVL 120

Accepted Solution

Andrew Hancock (VMware vExpert / EE MVE^2) earned 500 total points
ID: 40003976
In that case, vCenter is probably resetting the permissions, because Access control, is supposed to be controlled via vCenter Server.

Adding permissions directly to ESXi Host is not supported when being Managed by vCenter Server, when you connect directly to ESXi, it states this!

So I would either

1. Manage via vCenter Server

2. Manage directly via ESXi Host and vSphere Client (and remove from vCenter Server)

Author Comment

ID: 40003983
Ahh OK I kinda felt that and was concerned that was the case. The permissions stick for awhile but do disappear eventually. Removing it from vCenter is not an option as this is required for our DR Solution. I may need to purchase another License of vCenter and run one in the Branch office or move my vCenter Server to that facility. Thanks for the confirmation

Featured Post

Don't miss ATEN at NAB Show April 24-27!

Visit ATEN at NAB Show to learn how our "Seamlessly Entertaining" solutions deliver fast, precise video streaming without delays for the broadcasting and media environment. ATEN will showcase its 16x16 Modular Matrix Switch (VM1600) and KVM Over IP Solution (KE6900 series).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article we will learn how to backup a VMware farm using Nakivo Backup & Replication. In this tutorial we will install the software on a Windows 2012 R2 Server.
This article outlines why you need to choose a backup solution that protects your entire environment – including your VMware ESXi and Microsoft Hyper-V virtualization hosts – not just your virtual machines.
Teach the user how to delpoy the vCenter Server Appliance and how to configure its network settings Deploy OVF: Open VM console and configure networking:
This video shows you how to use a vSphere client to connect to your ESX host as the root user. Demonstrates the basic connection of bypassing certification set up. Demonstrates how to access the traditional view to begin managing your virtual mac…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question