Details The Details pane is not always shown, but when available, it shows
detailed information on the currently selected object in the Results pane.The best way to learn the SCVMM console is to fire it up and look around. Explore all
of the workspaces, select the various nodes in the Navigation pane, and pay attention
to the ribbon, which will change and show some interesting options that you will want
to play with.
The MMC was great for its original concept of a standardized interface that could
allow various snap-ins to be placed and organized in a single console. However,
restrictions existed, particularly around role-based access control (RBAC), which is a
key tenant of System Center 2016 (and the older 2012 / 2012 R 2 wave). I’m talking
about System Center here instead of SCVMM because the focus on RBAC is common
for all of System Center and not just SCVMM. As System Center is used more broadly
across an organization, it’s likely that different groups of users will be given access to
only certain functionality areas of System Center 2016 components, and within those
functionality areas be able to perform actions on only a subset of all the objects. In the
past, although delegating different permissions was possible, the people delegating
rights would still see all of the elements of the administrative console and would get
Access Denied messages. With the new System Center model and RBAC, delegated
users see only the areas of the console to which they have rights and only the objects
with which they are allowed to work. A great example in SCVMM is granting delegated
rights to a group of users for only a specific collection of virtualization hosts. As
Figure 9. 4 shows, full administrators see the entire host hierarchy and all of the
available clouds on the left side, while a tenant administrator (a user with limited
access and capabilities) for the Replicated Cloud cannot see any of the clouds nor do
they have any knowledge of host groups. By showing application administrators only
console elements and objects to which they have rights, it makes the console easier to
use, makes it more intuitive, avoids the “Why don’t I have access to x, y, and z?”
questions, and makes the administrative tool usable by standard users such as self-
service users. Notice that the delegated user also has no view of the Fabric workspace
at all, and the other workspaces have information limited to their specific cloud.