How to allow limited user to open console of VM, not RDP

Marek 101 Reputation points


My goal is to allow access to the console (and few other actions like start, stop, etc.) of virtual machine, not RDP, to the specific users with limited permisssions by VMM console.

A few words about the configuration.

I have AD DS for example A and B. VMM is launched on domain A - on VMM server VMM service runnnig on domain account and MS SQL server is member of domain A and SQL instance running on domain account too.

Hyper-V servers with virtual machines, that I want amon others to allow access by console, are on domain B and connection to VMM server is set as permieter network. Connection is ok - I see all my Hyper-V servers in VMM server and I can manage them.

As VMM admin, I created cloud, user role, assign specific VM, assing permission and add user from domain A to that cloud - that user can login and do all within granted permissions, start, stop, reset, save, etc., but what about to open virtual machine console? If I do that, I got window with credentials to enter. If I put login and pass of domain administrator (or any other user that is member of builtin group - hyper-v administrator) from domain B, console will open, but these are big permissions that I don't want to give to the normal user. So, what can I do in this situation?

I will be greatfull for any tips about my problem.

System Center Virtual Machine Manager
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Marek 101 Reputation points

    Hello again.

    Anybody? I will be greatfull for any tips.


    0 comments No comments