Skip to end of metadata
Go to start of metadata

Typically due to security concerns you will not want to use an account with full administrative privileges when configuring your VMware Cloud Credentials.  Instead, you will want to create a "Service User" with the appropriate permissions to manage VMware via Scalr.  The following is a list of permissions that must be granted in order for this VMwareService User to function correctly with Scalr.

Permissions:

PermissionPurpose (Use case)
Datastore.AllocateSpaceCreating virtual machine
Datastore.Browse
Datastore.DeleteFile
Datastore.FileManagement
For internal purposes: writing files of virtual machine to datastores and other service operations
Folder.CreateCreating new folder
Folder.DeleteDeleting existed folder
Global.CancelTaskFor internal purposes: cancel running tasks
Global.ManageCustomFieldsAdding custom fields
Global.SetCustomFieldAdding custom fields
Network.AssignAssigning networks to virtual machine
Resource.AssignVMToPoolAssigning virtual machine to resource pool
Resource.DeletePoolDestroying resource pool
Sessions.ValidateSessionFor internal purposes: in process of sessions handling
VirtualMachine.Config.SwapPlacement
VirtualMachine.Config.Settings
VirtualMachine.Config.Resource
VirtualMachine.Config.Rename
VirtualMachine.Config.RemoveDisk
VirtualMachine.Config.RawDevice
VirtualMachine.Config.MksControl
VirtualMachine.Config.Memory
VirtualMachine.Config.HostUSBDevice
VirtualMachine.Config.EditDevice
VirtualMachine.Config.DiskExtend
VirtualMachine.Config.CPUCount
VirtualMachine.Config.ChangeTracking
VirtualMachine.Config.Annotation
VirtualMachine.Config.AdvancedConfig
VirtualMachine.Config.AddRemoveDevice
VirtualMachine.Config.AddNewDisk
VirtualMachine.Config.AddExistingDisk
For internal purposes: different operations in time of provisioning virtual machines
VirtualMachine.Interact.Suspend
VirtualMachine.Interact.Reset
VirtualMachine.Interact.PowerOn
VirtualMachine.Interact.PowerOff
VirtualMachine.Interact.DeviceConnection
In process of managing virtual machines: powering them on/off, rebooting and so on
VirtualMachine.Inventory.CreateFor internal purposes: creating task for virtual machine provisioning and running
VirtualMachine.Inventory.DeleteFor internal purposes: running task for virtual machine deleting
VirtualMachine.Provisioning.DeployTemplate
VirtualMachine.Provisioning.CloneTemplate
VirtualMachine.Provisioning.Clone
VirtualMachine.Provisioning.CreateTemplateFromVM
VirtualMachine.Provisioning.Customize
VirtualMachine.Provisioning.ModifyCustSpecs
VirtualMachine.Provisioning.ReadCustSpecs
For internal purposes: provisioning of virtual machine, working with their templates etc.
VirtualMachine.State.CreateSnapshotCreating snapshot of running virtual machine action


Additional information:

https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.wssdk.pg.doc/PG_Appx_Privileges_Reference.22.1.html