Required vCenter privileges for NetApp Disaster Recovery

02/02/2026 Contributors

For NetApp Disaster Recovery to perform its services, the vCenter account must have a minimum set of vCenter privileges. These privileges include registering and deregistering datastores, starting and stopping virtual machines (VMs), and reconfiguring VMs.

The following table lists all privileges required for Disaster Recovery to interface with a vCenter cluster.

Type	Privilege name (vSphere client)	Privilege name (API)	Description
Datastore	Datastore.Config	Configure datastore	Permits configuring a datastore.
Datastore.Delete	Remove datastore	Permits removing a datastore.
Datastore.Rename	Rename datastore	Permits renaming a datastore.
Folder	Folder.Create	Create folder	Permits creating a new folder.
Folder.Delete	Delete folder	Permits deleting a folder. Requires privilege on both the object and its parent.
Folder.Rename	Rename folder	Permits modifying a folder name.
Network	Network.Assign	Assign network	Permits assigning a network to a VM.
Network.Config	Configure	Permits configuring a network.
Virtual machine configuration	VirtualMachine.Config.AdvancedConfig	Advanced configuration	Permits adding or modifying advanced parameters in the VM's configuration file.
VirtualMachine.Config.Settings	Change settings	Permits changing general VM settings.
VirtualMachine.Config.CPUCount	Change CPU count	Permits changing the number of virtual CPUs.
VirtualMachine.Config.Memory	Change memory	Permits changing the amount of memory allocated to the VM.
VirtualMachine.Config.Resource	Change resource	Permits changing the resource configuration of VM nodes in a resource pool.
VirtualMachine.Config.Rename	Rename	Permits renaming a VM or modifying its notes.
VirtualMachine.Config.EditDevice	Modify device settings	Permits changing an existing device's properties.
VirtualMachine.Config.ReloadFromPath	Reload from path	Permits changing a VM configuration path while preserving identity.
VirtualMachine.Config.ResetGuestInfo	Reset guest information	Permits editing the guest operating system information for a VM.
Virtual machine guest	VirtualMachine.GuestOperations.ModifyAliases	Guest operation alias modification	Permits modifying the alias for the VM.
VirtualMachine.GuestOperations.QueryAliases	Guest operation alias query	Permits querying a VM's alias.
VirtualMachine.GuestOperations.Modify	Guest operation modifications	Permits modification operations, including transferring a file to the VM.
VirtualMachine.GuestOperations.Execute	Guest operation program execution	Permits running an application inside the VM.
VirtualMachine.GuestOperations.Query	Guest operation queries	Permits querying the guest OS. Operations include listing files.
Virtual machine interaction	VirtualMachine.Interact.AnswerQuestion	Answer question	Permits resolving issues during VM state transitions or runtime errors.
VirtualMachine.Interact.PowerOff	Power off	Permits powering off a powered-on VM.
VirtualMachine.Interact.PowerOn	Power on	Permits powering on or resuming a VM.
VirtualMachine.Interact.ToolsInstall	VMware Tools install	Permits mounting/unmounting the VMware Tools installer.
VirtualMachine.Inventory.CreateFromExisting	Create from existing	Permits cloning or deploying a VM from a template.
VirtualMachine.Inventory.Create	Create new	Permits creating a VM and allocating resources.
VirtualMachine.Inventory.Register	Register	Permits adding an existing VM to an inventory.
VirtualMachine.Inventory.Delete	Remove	Permits deleting a VM and its files. Requires privileges on both the object and its parent.
VirtualMachine.Inventory.Unregister	Unregister	Permits unregistering a VM. This permission requires privileges on both the object and its parent.
Virtual machine provisioning	VirtualMachine.Provisioning.Clone	Clone virtual machine	Permits cloning a VM and allocating resources.
VirtualMachine.Provisioning.Customize	Customize guest	Permits customizing the VM's guest operating system.
VirtualMachine.Provisioning.ModifyCustSpecs	Modify customization specification	Permits creating, modifying, or deleting customization specifications.
VirtualMachine.Provisioning.ReadCustSpecs	Read customization specifications	Permits reading a customization specification for a VM.
Virtual machine service configuration	VirtualMachine.Namespace.Query	Query service configurations	Permits retrieving a list of VM services.
VirtualMachine.Namespace.ReadContent	Read service configuration	Permits retrieving the existing VM service configuration.
Virtual machine snapshot	VirtualMachine.State.CreateSnapshot	Create snapshot	Permits creating a snapshot from the VM's current state.
VirtualMachine.State.RemoveSnapshot	Remove snapshot	Permits removing a snapshot.
VirtualMachine.State.RenameSnapshot	Rename snapshot	Permits renaming a snapshot or updating its description.
VirtualMachine.State.RevertToSnapshot	Revert to snapshot	Permits reverting the VM to the state of a given snapshot.

Type

Privilege name (vSphere client)

Privilege name (API)

Description

Datastore

Datastore.Config

Configure datastore

Permits configuring a datastore.

Datastore.Delete

Remove datastore

Permits removing a datastore.

Datastore.Rename

Rename datastore

Permits renaming a datastore.

Folder

Folder.Create

Create folder

Permits creating a new folder.

Folder.Delete

Delete folder

Permits deleting a folder. Requires privilege on both the object and its parent.

Folder.Rename

Rename folder

Permits modifying a folder name.

Network

Network.Assign

Assign network

Permits assigning a network to a VM.

Network.Config

Configure

Permits configuring a network.

Virtual machine configuration

VirtualMachine.Config.AdvancedConfig

Advanced configuration

Permits adding or modifying advanced parameters in the VM's configuration file.

VirtualMachine.Config.Settings

Change settings

Permits changing general VM settings.

VirtualMachine.Config.CPUCount

Change CPU count

Permits changing the number of virtual CPUs.

VirtualMachine.Config.Memory

Change memory

Permits changing the amount of memory allocated to the VM.

VirtualMachine.Config.Resource

Change resource

Permits changing the resource configuration of VM nodes in a resource pool.

VirtualMachine.Config.Rename

Rename

Permits renaming a VM or modifying its notes.

VirtualMachine.Config.EditDevice

Modify device settings

Permits changing an existing device's properties.

VirtualMachine.Config.ReloadFromPath

Reload from path

Permits changing a VM configuration path while preserving identity.

VirtualMachine.Config.ResetGuestInfo

Reset guest information

Permits editing the guest operating system information for a VM.

Virtual machine guest

VirtualMachine.GuestOperations.ModifyAliases

Guest operation alias modification

Permits modifying the alias for the VM.

VirtualMachine.GuestOperations.QueryAliases

Guest operation alias query

Permits querying a VM's alias.

VirtualMachine.GuestOperations.Modify

Guest operation modifications

Permits modification operations, including transferring a file to the VM.

VirtualMachine.GuestOperations.Execute

Guest operation program execution

Permits running an application inside the VM.

VirtualMachine.GuestOperations.Query

Guest operation queries

Permits querying the guest OS. Operations include listing files.

Virtual machine interaction

VirtualMachine.Interact.AnswerQuestion

Answer question

Permits resolving issues during VM state transitions or runtime errors.

VirtualMachine.Interact.PowerOff

Power off

Permits powering off a powered-on VM.

VirtualMachine.Interact.PowerOn

Power on

Permits powering on or resuming a VM.

VirtualMachine.Interact.ToolsInstall

VMware Tools install

Permits mounting/unmounting the VMware Tools installer.

VirtualMachine.Inventory.CreateFromExisting

Create from existing

Permits cloning or deploying a VM from a template.

VirtualMachine.Inventory.Create

Create new

Permits creating a VM and allocating resources.

VirtualMachine.Inventory.Register

Permits adding an existing VM to an inventory.

VirtualMachine.Inventory.Delete

Remove

Permits deleting a VM and its files. Requires privileges on both the object and its parent.

VirtualMachine.Inventory.Unregister

Unregister

Permits unregistering a VM. This permission requires privileges on both the object and its parent.

Virtual machine provisioning

VirtualMachine.Provisioning.Clone

Clone virtual machine

Permits cloning a VM and allocating resources.

VirtualMachine.Provisioning.Customize

Customize guest

Permits customizing the VM's guest operating system.

VirtualMachine.Provisioning.ModifyCustSpecs

Modify customization specification

Permits creating, modifying, or deleting customization specifications.

VirtualMachine.Provisioning.ReadCustSpecs

Read customization specifications

Permits reading a customization specification for a VM.

Virtual machine service configuration

VirtualMachine.Namespace.Query

Query service configurations

Permits retrieving a list of VM services.

VirtualMachine.Namespace.ReadContent

Read service configuration

Permits retrieving the existing VM service configuration.

Virtual machine snapshot

VirtualMachine.State.CreateSnapshot

Create snapshot

Permits creating a snapshot from the VM's current state.

VirtualMachine.State.RemoveSnapshot

Remove snapshot

Permits removing a snapshot.

VirtualMachine.State.RenameSnapshot

Rename snapshot

Permits renaming a snapshot or updating its description.

VirtualMachine.State.RevertToSnapshot

Revert to snapshot

Permits reverting the VM to the state of a given snapshot.

Required vCenter privileges for NetApp Disaster Recovery

Creating your file...