Skip to content
vScope Support Page

How to Create a Limited VMware Read-Account ("Virtual Machine User")

To enable vScope’s VMware integration with restricted access, create a limited read account on your vCenter, allowing only specific parts of the virtual infrastructure to be visible.

vCenter Read-Only Role for Limited Access

For shared VMware environments, a Virtual Machine User account provides a controlled level of access, ideal for cases where only a portion of the infrastructure should be visible.

Role: Virtual Machine User

User Capabilities:

  • Restricted to actions on virtual machines only.
  • Allows interaction with virtual machines without modifying configurations. This includes:
    • Full privileges for the Scheduled Tasks privilege group.
    • Selective privileges for the Global Items and Virtual Machine privileges groups.
    • No privileges for:
      • Folder, Datacenter, Datastore, Network, Host, Resource, Alarms, Sessions, Performance, and Permissions groups.

For further information, see VMware’s official documentation:

Note: Consult with your VMware administrator to ensure that the “Virtual Machine User” role is configured correctly according to your organization’s access policies.