improving info on service roles in multi-tenant environments #1034
Conversation
|
|
||
| * A role within the VMware Cloud organization, such as **Organization Administrator**, **Organization Owner**, or **Organization Member**. | ||
| * A role within the VMware Cloud organization, such as **Organization Administrator**, **Organization Owner**, or **Organization Member**. See [What organization roles are available in VMware Cloud Services](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-C11D3AAC-267C-4F16-A0E3-3EDF286EBE53.html) in the VMware Cloud services documentation. |
There was a problem hiding this comment.
See [What organization roles are available in VMware Cloud Services] t --> to services.
There was a problem hiding this comment.
Done (just used the title in the CSP docs.)
|
|
||
| * Optionally, a custom role created in the VMware Cloud organization. [Custom roles](csp_users_roles.html#create-edit-or-delete-a-custom-role) are composed of different service permissions. | ||
|
|
||
| Note that a custom role with an Operations for Applications permission applies only if the user has at least one Operations for Applications service role. In a multi-tenant Operations for Applications environment, custom roles apply to all service instances (tenants) for which the user has at least one Operations for Applications service role. |
There was a problem hiding this comment.
You invite the users only to the tenants for which you assigned them service roles. ----> You invite the users only to the tenants that have the assigned service roles.
There was a problem hiding this comment.
I think it's okay now, because you don't assign the service roles to the tenants.
| @@ -52,9 +57,10 @@ VMware Cloud uses organizations to provide controlled access to one or more serv | |||
| 1. Click your username and click **My Account**. | |||
| 2. On the **My Roles** tab you can see what organization roles are assigned to you. | |||
|
|
|||
| If do not have the VMware Cloud **Organization Owner** or **Organization Administrator** role assigned, you need to request them. To understand who the VMware Cloud **Organization Owner** or **Organization Administrator** users are, you can chat with VMware Support or file a VMware Cloud services support request. See [How do I get support](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E4DC731F-C039-4FB2-949E-9A61584CD5BF.html) in the VMware Cloud services product documentation. | |||
| If do not have the VMware Cloud **Organization Owner** or **Organization Administrator** role assigned, you need to request them. To understand who the VMware Cloud **Organization Owner** or **Organization Administrator** users are, you can chat with our Technical Support team or file a VMware Cloud services support request. See [How do I get support](https://docs.vmware.com/en/VMware-Cloud-services/services/Using-VMware-Cloud-Services/GUID-E4DC731F-C039-4FB2-949E-9A61584CD5BF.html) in the VMware Cloud services product documentation. | |||
There was a problem hiding this comment.
If do not have the VMware Cloud Organization Owner or Organization Administrator role assigned, you need to request them. ----->
If you do not have the VMware Cloud Organization Owner or Organization Administrator role assigned, you need to talk to your Administrator.
How can they request it? Is that what the second sentence is for? :)
There was a problem hiding this comment.
We don't have a definition for Administrator. I think the second sentence is for that (Margarita should have consulted with the team).
There was a problem hiding this comment.
There is a typo here.. If do not have the VMware --> If you do not have the VMware
| @@ -136,29 +145,27 @@ Custom roles work only in combination with service roles. The Operations for App | |||
|
|
|||
| ### Step 2: Assign the Roles and Invite the User | |||
|
|
|||
| Let's assign **Organization Administrator** as a mandatory organization role, then assign the **Viewer** service role to one tenant and the **Ingestion Policies** role to another tenant. After that we will assign the custom role. | |||
| Let's assign **Organization Administrator** as a mandatory organization role, then assign the **Viewer** service role for one tenant and the **Ingestion Policies** service role for another tenant. After that we will assign the custom role and it will apply to the two tenants for which the user has service roles. | |||
There was a problem hiding this comment.
After that, we assign the custom role, and it applies to the two tenants for which the user has service roles.
No description provided.