Azure ARC onboarding VMware Vsphere insufficient privileges error

Jimcobber 0 Reputation points
2023-12-12T20:41:19.0733333+00:00

When I try to onboard a vsphere server to ARC I get insufficient privileges error. The account I'm using is the administrator account, and it should have all the privs needed. Any ideas?

Please enter appliance VM control plane IP: 192.168.15.64

Do you want to configure the appliance VM proxy settings? (y/n) n

All configuration files created successfully

Appliance Configuration YAML was created here: C:\utils\AzureUpdateManager-appliance.yaml

Resource Configuration YAML was created here: C:\utils\AzureUpdateManager-resource.yaml

Infrastructure Configuration YAML was created here: C:\utils\AzureUpdateManager-infra.yaml

Starting validate

Validating the appliance configuration...

{"file":"D:/a/1/s/pkg/appliance/client.go:326","func":"prepForKVA","level":"info","msg":"Running validation for command: ArcApplianceValidate","time":"2023-12-12T12:47:39-05:00"}

Initializing chart values for provider: vsphere 2023-12-12T12:47:39-05:00 INFO Performing provider validations

2023-12-12T12:47:39-05:00 INFO vsphereProvider: Validate

2023-12-12T12:47:39-05:00 INFO Client Created with vcenter url: sd-vsphere.kaufcan.com

2023-12-12T12:47:40-05:00 INFO Testing vCenter compatibility

2023-12-12T12:47:40-05:00 INFO Testing existence of vCenter entities and paths

2023-12-12T12:47:40-05:00 INFO Testing requested network configuration

2023-12-12T12:47:40-05:00 INFO Testing permissions and entity privileges

2023-12-12T12:47:40-05:00 INFO Testing permissions and entity privileges /

2023-12-12T12:47:40-05:00 INFO Testing permissions and entity privileges /Datacenter SD/vm/vCLS

2023-12-12T12:47:40-05:00 WARN Privilege=Folder.Create is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.AddExistingDisk is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.AddNewDisk is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.AddRemoveDevice is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.AdvancedConfig is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.Annotation is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.CPUCount is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.ChangeTracking is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.DiskExtend is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.DiskLease is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.EditDevice is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.ManagedBy is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.Memory is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.MksControl is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.QueryFTCompatibility is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.QueryUnownedFiles is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.ReloadFromPath is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.RemoveDisk is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.Rename is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.ResetGuestInfo is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.Resource is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.ToggleForkParent is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Config.UpgradeVirtualHardware is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.DeviceConnection is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.GuestControl is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.PowerOn is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.Reset is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.Suspend is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Interact.ToolsInstall is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Inventory.CreateFromExisting is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Inventory.Create is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Inventory.Register is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.GuestOperations.Modify is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.GuestOperations.ModifyAliases is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.Clone is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.DeployTemplate is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.DiskRandomAccess is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.DiskRandomRead is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.FileRandomAccess is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.GetVmFiles is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.MarkAsTemplate is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.MarkAsVM is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.Provisioning.PutVmFiles is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.State.CreateSnapshot is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.State.RemoveSnapshot is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VirtualMachine.State.RevertToSnapshot is missing on Folder:group-v79 resource

2023-12-12T12:47:40-05:00 WARN Privilege=VApp.Import is missing on Folder:group-v79 resource

{"file":"D:/a/1/s/pkg/appliance/client.go:170","func":"Validate","level":"error","msg":"Error details, Provider: vsphere, Command: Validate, Msg: Error while validating via kva, ErrorCode: ValidateKvaError, Error: {\n "code": "InsufficientPrivilegesError",\n "message": "The specified resource 'Folder:group-v79' does not have required privileges"\n }","time":"2023-12-12T12:47:40-05:00"}

{

"errorCode": "InsufficientPrivilegesError",

"errorResponse": "{\n"message": "The specified resource 'Folder:group-v79' does not have required privileges"\n}"

}

Script execution failed with error: Appliance creation has failed.

Please reach out to arc-vmware-feedback@microsoft.com or create a support ticket for Arc enabled VMware vSphere in Azure portal.

Azure VMware Solution
Azure VMware Solution
An Azure service that runs native VMware workloads on Azure.
360 questions
Azure Arc
Azure Arc
A Microsoft cloud service that enables deployment of Azure services across hybrid and multicloud environments.
438 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.