Solved

Need To Create Users with shell access on ESXi 5.5 Host with all rights but not to modify permission!!

Posted on 2014-12-12
7
657 Views
Last Modified: 2014-12-28
it was good to configure in 5.1,but in 5.5 am unable to locate option to disable modify permission ?

 is something difference made in 5.1 and 5.5 ? for user creation ?

Can we create users @ ESXi only or VC access is required to create user with modify restriction  ?

Pls share quick and best way to configure using GUI/command line?
0
Comment
Question by:patron
  • 3
  • 3
7 Comments
 
LVL 120
ID: 40495845
Modify what ?

virtual machines ?

or host files ?
0
 
LVL 1

Author Comment

by:patron
ID: 40496063
m sorry if i missed  it earlier. its for modify permission  option should  not be allowed for user created on host.
0
 
LVL 120
ID: 40496107
Yes, but what do you want users to stop modifying files on the host OS or Virtual Machines ?
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 1

Author Comment

by:patron
ID: 40497837
user should not be able to modify any thing on VC,VM ,Host
0
 
LVL 120

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 250 total points
ID: 40497846
Well all those are different.

ESXi Host - not possible (root or nothing).

vCenter Server - Windows Permissions either Local or Active Directory Local Administrator.

Virtual Machines - Windows Permissions either Local or Active Directory Local Administrator.

Create a User for vCenter Server, with no modification permissions, e.g. Read Only to view, but not change machines.
0
 
LVL 5

Assisted Solution

by:Dawid Fusek
Dawid Fusek earned 250 total points
ID: 40501794
not sure how advanced restricted privileged  access You need but there are products like CA ControlMinder (now CA Identity Manager) for Virtual Environment where you can manage root and users permissions up to single command or even a protected shell, where the user (or root) can have access to everything, but may modify only a few or nothing.

It's rather not cheap software and not very easy to implement but if there are a need to privileged access to VE it's one of solution you can consider.

You can read more here:
http://www.ca.com/us/securecenter/ca-privileged-identity-manager-for-virtual-environments.aspx

regards
NTShad0w
0
 
LVL 1

Author Closing Comment

by:patron
ID: 40521365
Thanks
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The question appears often enough, how do I transfer my data from my old server to the new server while preserving file shares, share permissions, and NTFS permisions.  Here are my tips for handling such a transfer.
Advanced tutorial on how to run the esxtop command to capture a batch file in csv format in order to export the file and use it for performance analysis. He demonstrates how to download the file using a vSphere web client (or vSphere client) and exp…
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question