Why a user with no access to NetApp HCI cluster UI can manage the cluster from Element Plug-in?
- Views:
- 146
- Visibility:
- Public
- Votes:
- 0
- Category:
- element-plug-in-for-vcenter-server
- Specialty:
- solidfire
- Last Updated:
​
Applies to
- NetApp HCI
- NetApp Element Plug-In for vCenter Server (VCP)
Answer
Access to the objects within vCenter is controlled by the vSphere Roles and Permissions assigned to the user.
If the user has access to the Element plug-in within vCenter , then the user can manage the storage cluster using the plug-in.
Additional Information
Element plug-in for vCenter server doesn’t have a role based access control that we can set. All the tasks inside the plug-in are performed using the credential ( which is usually the cluster admin credential) specified during the deployment. We can see this from the API calls.
Event ID,Event Time,Type,Message,Service ID,Node ID,Drive ID,Details
196479,2021-04-16T08:35:53.755Z,apiEvent,API Call (CreateInitiators),,2,,"{ ""success"": true, ""params"": { ""initiators"": [ { ""name"": ""iqntest20210416byuser3"" } ], ""requestAPIVersion"": ""9.0"" }, ""method"": ""CreateInitiators"", ""context"": { ""ip"": ""10.200.0.167"", ""authMethod"": ""Cluster"", ""user"": ""admin"" } }"