4.4. PowerUserRole permission assignment
A Power User can perform some administrative functions in the User Portal, including creating and editing virtual machines, creating templates, and working with snapshots. In addition, a Power User who creates a virtual machine from the User Portal will be automatically assigned to the virtual machine. A Power User has permissions for the assigned virtual machine only, not for all virtual machines in the enterprise.
In Red Hat Enterprise Virtualization Manager, permissions are set on system objects, including data centers, clusters and virtual machines. This permission is user specific, while the scope of permission is defined by the user role.
For a user to log in to the power user portal, the user must have power user permissions on any system object. However, in order to allow a user to create both virtual machines and templates, as you are going to do in this lab, the permission has to be assigned for the data center level.
Perform this procedure in the administration portal as the admin user in the internal domain.
To assign PowerUserRole permissions on a data center
- On the Tree pane, click and select the Default data center. On the Data Center tab, select the Default data center to display the details pane, and click the Permissions subtab.
- Click to add an existing user. The Add Permission to User dialog displays. Under the Search fields, select ipadomain.demo.redhat.com on the drop-down menu and enter rhevpower in the text box. Click .
- Select the check box of
rhevpowerto be assigned the permissions. Select the Assign role to user drop-down list and select PowerUserRole. - Click . The name of the user displays in the Permissions tab, with an icon and the assigned role.
While you have assigned permissions for the user rhevpower to make administrative changes to the data center, this user does not automatically inherit power user permissions for the existing virtual machines in the data center. To do so, repeat the previous procedure, substituting data center for the existing virtual machines.