I have followed some steps to assign Virtual Machine Administrator rights to ONE specific VM. The user account is able to log in fine to vsphere and see the single VM but it is unable to edit NETWORK CONNECTION settings.
How can I get this to work without giving the user more rights than he needs?
You must modify the role which you given to the User..
The vm Network assign, modification and configuration is not possible in to the vm admin rights.
Do as following.
It does actually this option already since I added the user to the ADMINISTRATOR role in vsphere. I get an invalid backing message under the VMs settings when login in as the user.
Than you must go ahead and check the below thing.
Network > Assign Network permission needs to be selected under Home > Inventory > Networking. Select the network in question, click the Permissions tab, and verify that the user/group has the permission at this level either directly or propagated from the datacenter object.
If the user is lacking for the permission assign appropriate permission for it.
That did not work unfortunately.
What exactly does this person need to be able to do in vCenter to only one VM?
ultimately, I am trying to give the user the ability to log in via the console and the ability to change the virtual network adapter at will.
http://blogs.vmware.com/vsphere/2012/09/joining-vsphere-hosts-to-active-directory.html
I think I found the solution to my own question.
Need to add the hosts to Active Directory.(Join the domain) This will probably have to be done on a maintenance windows though.