It's bit different when compared to vRA 7.x versions. If you do not have any Day 2 Action policies defined, then no governance
is applied and all users have access to all the actions by default in vRA 8.x.Okay, let see this with an example
By default all the deployments/machines are entitled with all actions for all users in the organization
Once you a define Day 2 Action policy it goes into effect for specified users of vRA service broker and Cloud assembly. As a result, only the users for whom the first policy is true can run the selected actions. All others are excluded.
I have created a Day2 Action policy to change deployment lease and create snapshot of cloud machine for Administrator user in the entire organization(includes all projects in the organization).
As you can see below I logged in with an project administrator user and I am entitled with enforced Day2 action created and this will be applied for existing deployment as well.
When I logged as a project member user as below I am not entitled for any Day2 actions
Hope this gives an idea of how day2 action policy works in vRA 8.x.
Comments
Post a Comment