vCloud Director includes predefined roles. Each of these roles includes a set of default rights.

The system administrator has super-user rights for the entire system. System administrator credentials are established during installation and configuration. A system administrator can create additional system administrator accounts. All system administrators are members of the system organization. You cannot modify the rights associated with this role.

After creating an organization, a system administrator can assign the role of organization administrator to any user in the organization. An organization administrator has super-user rights within that organization, and can assign any of the predefined roles to the organization's users and groups.

Organization Administrator

An organization administrator can assign the role of organization administrator to any member of an organization.

Catalog Author

The rights associated with the catalog author role allow a user to create and publish catalogs.

vApp Author

The rights associated with the vApp Author role allow a user to use catalogs and create vApps.

vApp User

The rights associated with the vApp User role allow a user to use existing vApps.

Console Access Only

The rights associated with the Console Access Only role allow a user to view virtual machine state and properties and to use the guest OS.

Each predefined role includes a set of default rights. If an organization administrator modifies the set of rights associated with a predefined role, those modifications apply only in the context of that organization. If a system administrator modifies the set of rights associated with a predefined role, those modifications apply to all organizations in the system.

You classify rights according to the objects to which they apply.

Admin rights are granted to the system administrator throughout the system, and to an organization administrator within the organization.

Rights Associated With Catalogs

Admin

Catalog Author

vApp Author

vApp User

Console Access Only

Catalog: Add vApp from My Cloud

X

X

X

Catalog: Change Owner

X

Catalog: VCSP Publish Subscribe

X

X

X

Catalog: Enable a vApp template or media item for download

X

X

Catalog: Create or Delete a Catalog

X

X

Catalog: Edit Properties

X

X

Catalog: Publish

X

X

Catalog: Sharing

X

X

Catalog: View Private and Shared Catalogs

X

X

X

Catalog: View Published Catalogs

X

Rights Associated With Independent Disks

Admin

Catalog Author

vApp Author

vApp User

Console Access Only

Disk: Change Owner

X

X

Disk: Create

X

X

X

Disk: Delete

X

X

X

Disk: Edit Properties

X

X

X

Disk: View Properties

X

X

X

X

Rights Associated With vApp Templates and Media

Admin

Catalog Author

vApp Author

vApp User

Console Access Only

vApp Template or Media: Create or Upload

X

X

vApp Template or Media: Edit

X

X

vApp Template or Media: View

X

X

X

X

vApp Template: Checkout (Add to My Cloud)

X

X

X

X

Rights Associated With vApps

Admin

Catalog Author

vApp Author

vApp User

Console Access Only

vApp: Change Owner

X

vApp: Copy

X

X

X

X

vApp: Create or Reconfigure

X

X

X

vApp: Delete

X

X

X

X

vApp: Edit Properties

X

X

X

X

vApp: Edit VM CPU

X

X

X

vApp: Edit VM Hard Disk

X

X

X

vApp: Edit VM Memory

X

X

X

vApp: Edit VM Network

X

X

X

X

vApp: Edit VM Properties

X

X

X

X

vApp: Manage VM Password Settings

X

X

X

X

X

vApp: Power Operations

X

X

X

X

vApp: Sharing

X

X

X

X

vApp: Snapshot Operations

X

X

X

X

vApp: Use Console

X

X

X

X

X

vApp: View VM Metrics

X

X

X

All of these rights are granted to the system administrator throughout the system, and to an organization administrator within the organization. These rights are not granted to any other predefined role.

Other Administrative Rights

Admin

Catalog Author

vApp Author

vApp User

Console Access Only

General: Administrator Control

X

General: Administrator View

X

General: Send Notification

X

Group or User: View

X

Organization Network: Edit Properties

X

Organization Network: View

X

Organization VDC Gateway: Configure Services

X

Organization VDC Network: Edit Properties

X

Organization VDC Network: View Properties

X

Organization VDC Storage Policy: Set Default

X

Organization VDC: View

X

Organization: Edit Federation Settings

X

Organization: Edit Leases Policy

X

Organization: Edit Password Policy

X

Organization: Edit Properties

X

Organization: Edit Quotas Policy

X

Organization: Edit SMTP Settings

X

Organization: View

X