Documentation is not clear about required privileges and at which level these should be applied #1356
Comments
|
Hi @greeneg - Are you looking for single-set documentation of privileges or per resource / data source? Recommended: Ryan |
|
@tenthirtyam Thank you for looking into this. It would be nice to have a table in a single page as documented in Required Privileges for Common Tasks table in this page Any documentation on this is welcome as we have customers (who are very security conscious) who argue that they can create VMs on vCenter directly without certain privileges and why additional privileges are required while using Terraform providers. If we have a definitive documentation on this it would help us. |
Updates `virtual_machine.html.markdown`: - Updated for content accuracy. - Updated all examples to be more readable and complete. - Included continuity between examples. - Addressed concerns mentioned in #1425, #1414, and #1356. - Added some clarify based on issues #1435 and #1406 re: `scsi_type` Signed-off-by: Ryan Johnson <johnsonryan@vmware.com>
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further. |
Description
Our environment uses a least-privilege environment. When we provision, we get NoPermission errors when it tries to provision:
NoPermission: RESOURCE (vm-3962:2000), ACTION (queryAssociatedProfile): RESOURCE (vm-3962), ACTION (PolicyIDByVirtualDisk)
Current privileges:
Looking for more thorough documentation on privileges required and what segments of the vCenter the privileges should be assigned under.
The text was updated successfully, but these errors were encountered: