DataDog
VSphere integration dies when permission denied on some resources
Note: If you have a feature request, you should contact support so the request can be properly tracked.
Output of the info page
Sorry, we found work-around before gathering this.
Additional environment details (Operating System, Cloud provider, etc):
Steps to reproduce the issue:
- Have a read-only user without read permission to some resources (don't know exactly which)
- try to run the vsphere integration using that user
- get no metrics, see errors in logs
Describe the results you received:
pyVmomi.VmomiSupport.vim.fault.NoPermission: (vim.fault.NoPermission) {
dynamicType = <unset>,
dynamicProperty = (vmodl.DynamicProperty) [],
msg = 'Permission to perform this operation was denied.',
faultCause = <unset>,
faultMessage = (vmodl.LocalizableMessage) [],
object = 'vim.Folder:group-d1',
privilegeId = 'System.Read',
missingPrivileges = (vim.fault.NoPermission.EntityPrivileges) [
(vim.fault.NoPermission.EntityPrivileges) {
dynamicType = <unset>,
dynamicProperty = (vmodl.DynamicProperty) [],
entity = 'vmodl.query.PropertyCollector:propertyCollector',
privilegeIds = (str) [
'System.Read'
]
}
]
}
"}]
No vsphere metrics sent.
Describe the results you expected: Unreadable resources should be gracefully skipped. I should get metrics for resources I do have read access to.
Additional information you deem important (e.g. issue happens only occasionally): Got the admins to give us global read-only access, and that "solved" the problem. Authentication definitely working. Using a wrong password results in a completely different error message.
