Managing Read-Only Users
You can assign the role of a Read-only User, enable and disable Read-only Users.
Required Privileges
To perform this task, a user must have one of the following roles assigned: Portal Administrator.
Assigning Read-Only User Role
To grant Read-only User privileges to a user or group:
- Log in to Veeam Service Provider Console.
For details, see Accessing Veeam Service Provider Console.
- At the top right corner of the Veeam Service Provider Console window, click Configuration.
- In the configuration menu on the left, click Roles & Users.
- Open the My Company tab and navigate to Windows Users.
- At the top of the page, click New.
Alternatively, you can right-click the user list and choose New.
Veeam Service Provider Console will launch the New Windows User wizard.
- At the Domain step of the wizard, type the domain name and specify credentials to connect to the domain.
By default, Veeam Service Provider Console searches users and groups on the machine hosting Veeam Service Provider Console. If you installed Veeam Service Provider Console using the distributed deployment scenario, this will be a machine on which the Veeam Service Provider Console Server component runs.
- At the Account step of the wizard, select a user account:
- From the Type drop-down list, select the account type: User or Group.
- To find a user or a group by name, use the Account search field.
Note: |
To be able to log in to Veeam Service Provider Console web UI, selected users or groups must be specified in the Allow log on locally security policy setting on the machine where Veeam Service Provider Console Server component is installed. |
- At the Role step of the wizard, select the Read-only User role.
- At the Companies step of the wizard, select companies that a user or group will manage.
If you want to add a Read-only User who will monitor all companies, select the All companies, including newly added option. With this option selected, Veeam Service Provider Console will also include newly added companies to a Read-only User monitoring scope.
If you want to add a Read-only User who will have access to the service provider company, set the Access to internal resources of My Company toggle to On..
If you logged in to Veeam Service Provider Console as a Site Administrator, you can assign to Read-only Users only companies registered on your Veeam Cloud Connect site.
- At the Summary step of the wizard, review user details and click Finish.
Disabling Read-Only Users
To control access to Veeam Service Provider Console for Read-only Users, you can enable and disable groups and users with Read-only User privileges. It is recommended to disable users to instantly revoke access to the portal for these users.
To disable a user or a user group with Read-only User privileges:
- Log in to Veeam Service Provider Console.
For details, see Accessing Veeam Service Provider Console.
- At the top right corner of the Veeam Service Provider Console window, click Configuration.
- In the configuration menu on the left, click Roles & Users.
- Open the My Company tab and navigate to Windows Users.
- At the top of the page, select the Read-only User role.
- Select the necessary user or user group in the list.
To narrow down the list of users, you can apply the following filters:
- Name — limit the list of users by name.
- User type — limit the list of users by type (Users, Groups).
- MFA status — limit the list of users by multi-factor authentication status (Enforced, Not enforced).
- Click Disable.
Alternatively, you can right-click the necessary user and choose Disable.
Enabling Read-Only Users
To enable a user or a user group with Read-only User privileges:
- Log in to Veeam Service Provider Console.
For details, see Accessing Veeam Service Provider Console.
- At the top right corner of the Veeam Service Provider Console window, click Configuration.
- In the configuration menu on the left, click Roles & Users.
- Open the My Company tab and navigate to Windows Users.
- At the top of the page, select the Read-only User role.
- Select the necessary user or user group in the list.
To narrow down the list of users, you can apply the following filters:
- Name — limit the list of users by name.
- User type — limit the list of users by type (Users, Groups).
- MFA status — limit the list of users by multi-factor authentication status (Enforced, Not enforced).
- Click Enable.
Alternatively, you can right-click the necessary user and choose Enable.