Required VMware vSphere Permissions

Product version: 10.10

Last modified: 26 January 2024

Question

I do not want to grant full administrative vSphere permissions to NAKIVO Backup & Replication.
What are the permissions required by NAKIVO Backup & Replication?

Answer

The following vSphere permissions are required:

  • Cryptographic Operations

    • Direct access

    • Add disk

  • Datastore

    • Allocate space

    • Browse datastore

    • Low-level file operations

    • Remove file

  • dvPort group

    • Create

    • Delete

  • Folder

    • Create folder

    • Delete folder

  • Global

    • Disable methods

    • Enable methods

    • Licenses

    • Log event

    • Manage custom attributes

    • Set custom attribute

    • Settings

  • Host > Configuration

    • Network configuration

    • Storage partition configuration

    • Query patch (only required for I/O Filter)

  • Host > Local operations

    • Create virtual machine

    • Delete virtual machine

    • Reconfigure virtual machine

  • Network

    • Assign network

    • Configure

  • Resource

    • Assign virtual machine to resource pool

    • Create resource pool

    • Migrate powered off virtual machine

    • Migrate powered-on virtual machine

    • Remove resource pool

  • vApp

    • Add virtual machine

    • Assign resource pool

    • Unregister

  • Virtual machine > Change Configuration

    • Add existing disk

    • Add new disk

    • Add or remove device

    • Advanced configuration

    • Change CPU count

    • Change resource

    • Toggle disk change tracking

    • Acquire disk lease

    • Extend virtual disk

    • Configure Host USB device

    • Change Memory

    • Modify device settings

    • Configure Raw device

    • Remove disk

    • Rename

    • Change Settings

    • Change Swapfile placement

    • Display connection settings

  • Virtual machine > Interaction

    • Configure CD media

    • Configure floppy media

    • Console interaction

    • Create screenshot

    • Connect devices

    • Guest operating system management by VIX API

    • Perform wipe or shrink operations

    • Power Off

    • Power On

  • Virtual machine > Edit Inventory

    • Create from existing

    • Create new

    • Register

    • Remove

    • Unregister

  • Virtual machine > Provisioning

    • Allow disk access

    • Allow read-only disk access

    • Allow virtual machine download

    • Allow virtual machine files upload

  • Virtual machine > Snapshot management

    • Create snapshot

    • Remove snapshot

    • Revert to snapshot