My team will soon be migrating a number of legacy VMware VMs to a the vCenter that we are using as our “Provider”. We have created roles and groups and when provisioning, all the correct tags apply and successfully control access to the VMs.
My problem is that when I manually tag the imported VMs, my groups are unable to see the new VMs. It isn’t until I click “configuration > set ownership” on the VM, are the desired groups able to see the VMs. I have always understood that the tag was what controlled this access. As long as my group tags and VM tags match up, that is all the access control that I need. Am I wrong? Additionally, the role that I am assigning to my groups is set to “Only User or Group Owned”. Thank you