Virtualization

AppAssure vCenter Permissions for Exporting Virtual Standby VMs

AppAssure vCenter permissions needed for exporting VMs.
Brandon LeeNovember 13, 2015Last Updated: January 11, 2021
1 minute read
AAperm01
AAperm01

In working recently with AppAssure in exporting VMs for Virtual Standby purposes, I found a lack of documentation in AppAssure or on the net surrounding permissions required in vCenter to export VMs as Virtual Standbys.

I wanted to share with you guys what permissions so far I have found to work with AppAssure in performing the export process with vCenter.

Create a user

The first thing I did was create a non privileged domain user to assign permissions to in vCenter to perform the export. ย I have seen cases where admins use the SSO administrator and other domain admin accounts to do this. ย This is not necessary. ย If you want to follow the model of least privilege access, it is best to create a normal domain user to assign permissions.

Permissions Errors

If you create a user and assign permissions in vCenter and you don’t have the permissions you need to run the export task, you will receive the following error message:

Cannot execute an export taskException chain:

  • Permission to perform this operation was denied.
  • Cannot execute an export task
  • One or more errors occurred.

 

Replay.Core.Contracts.Export.ExportException: Cannot execute an export task  ---> System.Web.Services.Protocols.SoapException: Permission to perform this operation was denied.

Role and permissions

The first thing you will want to do is create a role to assign permissions to. ย Then we can add our domain user to this role which assumes the permissions of the role. ย I created a role calledย AppAssure_VirtualStandby and assigned the following permissions to it:

AAperm01
 AAperm02

AAperm03

The final shot is the last set of permissions under Virtual Machines. ย This one can probably be paired down as I simply chose to give this role all virtual machine permissions which the export most likely doesn’t need all. ย However, your mileage may vary here.


 AAperm04

After you setup the above role, simply go into your vCenter server permissions and assign your domain user to the role you created above.

Final Thoughts

If you like me were not successful in finding good documentation on the permissions AppAssure needed for the export or Virtual Standby process, hopefully the above notes will help you save some of the time that I burned trying to figure this out!

 

Brandon LeeNovember 13, 2015Last Updated: January 11, 2021
1 minute read

Subscribe to VirtualizationHowto via Email ๐Ÿ””

Enter your email address to subscribe to this blog and receive notifications of new posts by email.



Photo of Brandon Lee

Brandon Lee

Brandon Lee is the Senior Writer, Engineer and owner at Virtualizationhowto.com, and a 7-time VMware vExpert, with over two decades of experience in Information Technology. Having worked for numerous Fortune 500 companies as well as in various industries, He has extensive experience in various IT segments and is a strong advocate for open source technologies. Brandon holds many industry certifications, loves the outdoors and spending time with family. Also, he goes through the effort of testing and troubleshooting issues, so you don't have to.

Related Articles

Vmware alternative for virtualization

Top 5 VMware Alternatives in 2023

November 9, 2023
vcenter_upgrade21

Updating vCenter Server 5.5 to update 2

October 2, 2014
Ready to begin and select the network configuration

Install KVM Ubuntu 22.04 – Step-by-Step

September 21, 2022
Best kvm based hypervisor in 2024

Best KVM based Hypervisors in 2024

February 26, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© Copyright 2024, All Rights Reserved  | VirtualizationHowto.com