Hi. In this (https://docs.microsoft.com/en-us/azure/azure-vmware/concepts-identity) document, we don't have clear statement about rights for AVS because:
According vCenter we have different information in sentences:
"...vCenter Server has a built-in local user called cloudadmin assigned to the CloudAdmin role"
-"...In a vCenter Server and ESXi on-premises deployment, the administrator has access to the vCenter Server firstname.lastname@example.org account...."
According to access to physical ESXi:
"...the administrator has access to the vCenter Server email@example.com account and the ESXi root account.."
"...In an Azure VMware Solution deployment, the administrator doesn't have access to the administrator user account or the ESXi root account..."
In above two cases, information is not clear.
My use case is important for me because i would like advice in correct way for customers in case when they would like for example install some additional 3rd party plugin on vCenter. for example for backup management.
Base on above:
Which sentences are true ?
If escalate request https://docs.microsoft.com/en-us/azure/vmware-cloudsimple/escalate-private-cloud-privileges was possible only in previous version AVS ? from Cloudsimple ? If YES then if current rights are enough to install by customer some 3rd party plugins if need it (example: backup , replication software) ?