As VMware Cloud on AWS begins to roll out NSX-T based Software-Defined Data Centers (SDDCs), users may begin to see an issue with configuring the SDDC networking settings:
So, what gives??! I was able to edit my settings in my previous NSX-V based SDDCs. Luckily there is a simple fix. The issue here is that with NSX-T there is more functionality as well as additional permission granularity. This means that each VMC user that you want to have permission to change Networking and Security configurations will need an additional permission added to their account. This can be done by
clicking on the 3×3 squares icon in the top right of the VMC console and going to ‘Identity & Access Management’.
Here you can click on the user you want to update and click ‘Edit Role’:
Under ‘Assign Service Roles’ ensure the ‘VMware Cloud on AWS’ service is selected and then click on the ‘with roles’ drop down and check ‘‘NSX Cloud Admin’ and click ‘Save’.
By adding the NSX Cloud Admin role we now should be able to log back in with the user account we were editing (if they are still logged in they will need to logout and back in to get the updated permissions) and see the Networking & Security settings