VMware privileges required for VMware monitoring using Site24x7
To monitor different VMware resources using Site24x7, you must have a few privileges enabled. For users with an Administrator role, all privileges will be available. If you have a Read Only role, you'll need additional privileges to perform certain operations. The following table lists the privileges required to monitor different VMware resources.
|
VMware resources |
Privilege |
Reason |
|
vCenter |
No additional privileges are required |
|
|
ESX/ESXi host |
No additional privileges are required |
|
|
Virtual machine (VM) |
Interact.PowerOff, Interact.PowerOn, and Interact.Reset for the connected ESX/ESXi host |
To stop, start, and reset VMs for the Site24x7 console |
|
Datastore |
Browse and Config for all connected ESX/ESXi hosts |
To perform basic monitoring |
|
Resource pool |
No additional privileges are required |
|
|
All types
|
System.Read, System.View, and System.Anonymous
|
Default privileges for Read Only role.
|
Enabling privileges
Follow the steps below and enable the required privileges:
- Log in to your vSphere client.
- Check if you've created either of the two required roles. If not, create one by navigating to Host in the left tab, then right-click and select Permissions.
- Under Manage permissions, select the desired User from the list of users displayed, and click Assign role.
- In Set permissions under Root, click Datastore, and check the boxes next to Browse and Config for datastores.
- For virtual machines, click VirtualMachine and then click Interact. Now, check the boxes next to PowerOff, PowerOn, and Reset.
- Finally, click Assign role.
Creating custom roles
- You can also create custom roles and assign the required privileges.
- From the left tab of your vSphere client, click Manage.
- In the Roles tab that opens, click Add role.
- In the Add role window, under Root, assign permissions for datastores and virtual machines by following the above steps 4 and 5 (under Enabling privileges).
- Click System. Check the boxes for Anonymous, Read, and View under System.
- Click Add.
Related Articles
Roles supporting tunnel management and path data in VMware VeloCloud SD-WAN
Introduction In VMware VeloCloud SD-WAN, the ability to create or modify tunnels and view path (tunnel) data depends on the user role. This ensures that configuration changes and diagnostic insights are restricted to authorized users. The table below ...Exclude the selective SSH algorithms in On-Premise Poller during SFTP Transfer monitoring
By excluding SSH algorithms, you can restrict Site24x7 SSH Client from using the excluded algorithm while connecting to the SSH server during SFTP Transfer monitoring. Follow the steps mentioned below for SSH algorithm exclusion in On-Premise Poller ...Troubleshooting false positive alerts in monitoring
Problem False positive alerts are being generated. Possible cause The monitoring system is down in some locations. The Website monitor might be configured for one location, such as Seattle, but may appear down when accessed from another location, ...How do I monitor an Oracle database hosted in a Docker container in the same machine?
To monitor your Oracle Database hosted in a Docker container, follow these steps: Log in to Site24x7 and install the Site24x7 Linux monitoring agent. Execute the following command in your terminal and enter your Oracle Database instance's username ...Exclude Site24x7 monitoring traffic from Google Analytics
You can exclude traffic from the Site24x7 Web Transaction (Browser) monitor and Webpage Speed (Browser) traffic from Google Analytics in two ways. To exclude traffic for the Web Defacement monitor, you can follow the first method. 1. Creating a ...