Vsphere – User Permissions audit

I need to retrieve user and their permissions in an excel file. I am an intern and tried to look around vsphere but couldn’t get an idea to retrieve user permissions. Is there any option in vsphere to retrieve or any command in Powershell? Thanks for your help.

View Reddit by Crgowtham7View Source

Related Articles


  1. Each user will login and have a role. Each object (virtual machine/network/host/etc) can have different permissions for those roles.

    It’s not clear what your requirements are – do you need to know this information for every object, just virtual machines, or something else?


    Edit: this powercli script would be a good start – [https://communities.vmware.com/t5/VMware-PowerCLI-Discussions/How-do-I-create-a-report-on-vCenter-permissions-via-PowerCLI/td-p/963116](https://communities.vmware.com/t5/VMware-PowerCLI-Discussions/How-do-I-create-a-report-on-vCenter-permissions-via-PowerCLI/td-p/963116)

  2. It’s not really a good security model. There are various “object types” and granular roles that can be applied to one or many of them. Additionally, some permissions are granted on the vCenter level, and others on the sub-component level.

    TLDR—You can export roles and their assignment through PowerShell, but it doesn’t always do a good job of illustrating effective permissions.

Leave a Reply