How to Create a Read-Only Administrator User Role in VMM
Updated: May 13, 2016
Applies To: System Center 2012 SP1 - Virtual Machine Manager, System Center 2012 R2 Virtual Machine Manager, System Center 2012 - Virtual Machine Manager
Use this procedure to create a Read-Only Administrator user role in Virtual Machine Manager (VMM).
Account requirements Administrators and delegated administrators can create a Read-Only Administrator role. Delegated administrators can create Read-Only Administrator user roles that include a subset of the Delegated Administrator user role’s scope, library servers, and Run As accounts.
To create a Read-Only Administrator user role
In the Settings workspace, on the Home tab in the Create group, click Create User Role.
In the Create User Role Wizard, enter a name and optional description for this Read-Only Administrator. Click Next to continue.
On the Profile page, select Read-Only Administrator and then click Next.
On the Members page, click Add to add user accounts and Active Directory groups to the user role with the Select Users, Computers, or Groups dialog box. After you have added the members, click Next.
On the Scope page, select private clouds or host groups for this read-only administrator, and then click Next. A read-only administrator can only view items within this defined scope.
On the Library servers page, click Add to select one or more library server with the Select a Library server dialog box. Click OK to select a server, and then click Next.
On the Run As accounts page, click Add to open the Select a Run As account dialog box. Select one or more accounts and click OK to add the account to the Run As accounts page.
Use the Ctrl key to select multiple accounts.
Click the Create Run As Account button to access the Create Run As Account dialog box.
After selecting accounts, click Next to continue.
Review the settings you have entered and then click Finish to create the Read-Only Administrator user role.
After you create a read-only administrator, you can change its Members, Scope, Library servers, and Run As accounts in the Properties dialog box for the Read-Only Administrator user role.