Can I map multiple AD groups to multiple roles on ESXi?

stackprotector

9/17/23, 7:05 AM

I have an AD joined ESXi server (v7.0) without a vCenter server. I can map an AD group to the "Administrator" role by configuring the advanced setting Config.HostAgent.Plugins.Hostsvc.EsxAdminsGroup. But is that all? Can I not map an AD group to the "Read only" role, for example?

0 + 0

active-directory

authorization

vmware-esxi

Jacob Evans

9/17/23, 1:06 PM

https://www.net-pioneers.com/vsphere-rbac-part-ii-allow-ad-user-to-mansge-esxi/

Score:0

Server

stackprotector

9/17/23, 3:14 PM

You can map groups to roles via the following path in vSphere Web Client:

Right-click on Host or on Manage
Click on Permissions

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Can I map multiple AD groups to multiple roles on ESXi?

TH: ฉันสามารถแมปกลุ่ม AD หลายกลุ่มกับหลายบทบาทบน ESXi ได้หรือไม่

RO: Pot mapa mai multe grupuri AD la mai multe roluri pe ESXi?

RU: Могу ли я сопоставить несколько групп AD с несколькими ролями на ESXi?

VI: Tôi có thể ánh xạ nhiều nhóm AD tới nhiều vai trò trên ESXi không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.