Backup

Below are vCenter Server granular permissions required for backup:

Privilege Level		Required Permissions
Privilege Level		Direct SAN Access Mode	Virtual Appliance Mode	Network Mode
Cryptographic operations		Direct Access	Direct Access	Direct Access
Datastore		Low-level file operations	Low-level file operations	Low-level file operations
Global		Disable methods Enable methods Licenses Log event Manage custom attributes Set custom attribute	Disable methods Enable methods Licenses Log event Manage custom attributes Set custom attribute	Disable methods Enable methods Licenses Log event Manage custom attributes Set custom attribute
Datastore cluster		Configure a datastore cluster	Configure a datastore cluster	Configure a datastore cluster
Virtual Machine	Change Configuration	Acquire disk lease Advanced configuration Set Annotation Toggle disk change tracking	Acquire disk lease Add existing disk Add or remove device Advanced configuration Configure RAW device (if machines have Virtual Compatibility RDM disks) Remove disk Set annotation Toggle disk change tracking	Acquire disk lease Advanced configuration Set annotation Toggle disk change tracking
	Guest operations	Guest operation modifications Guest operation program execution Guest operation queries	Guest operation modifications Guest operation program execution Guest operation queries	Guest operation modifications Guest operation program execution Guest operation queries
	Interaction	Guest operating system management by VIX API	Guest operating system management by VIX API	Guest operating system management by VIX API
	Provisioning	Allow read-only disk access Allow virtual machine download	Allow read-only disk access Allow virtual machine download	Allow read-only disk access Allow virtual machine download
	Snapshot Management	Create snapshot Remove snapshot	Create snapshot Remove snapshot	Create snapshot Remove snapshot