Sessions privileges control the ability of extensions to open sessions on the vCenter Server.

The table describes the privileges associated with sessions on vCenter Server.

Session Privileges

Privilege Name


Required On

Sessions.Impersonate user

Allow impersonation of another user. This capability is used by extensions.

Root vCenter Server


Allow setting of the global log in message.

Root vCenter Server

Sessions.Validate session

Allow verification of session validity.

Root vCenter Server

Sessions.View and stop sessions

Allow viewing sessions and forcing log out of one or more logged-on users.

Root vCenter Server