See the Explanation for complete Solution
Explanation:
To complete the tasks as a Cloud Administrator, follow these steps:
Task 1: Onboard New Interns into vRealize Automation
Log in to the Identity Manager (IDM) using the provided URL and credentials.
Navigate to Identity & Access Management.
Under Enterprise Groups, find and select interns-group-a and interns-group-b.
Assign interns-group-a with the role of Cloud Assembly User, which is the most restrictive access for Cloud Assembly.
Assign interns-group-b with the role of Service Broker User, which is the most restrictive access for Service Broker.
Ensure that the AD Organization Unit is correctly set to OU=Interns,DC=corp,DC=local for proper group synchronization.
Task 2: Resolve Access Permissions Issues
Log in to the vRealize Automation URL using the Cloud Administrator credentials.
Go to Identity & Access Management.
Locate the user with the logon id
[email protected].
Assign this user the role of Cloud Assembly User to allow creating and deploying from cloud templates in Cloud Assembly.
Verify that the user has the minimum permissions required and does not have any additional roles that exceed their responsibility.
By following these steps, you should be able to onboard the interns with the correct access and resolve the access permissions issues for the specified user. Always ensure to adhere to the principle of least privilege, granting users the minimum level of access necessary to perform their roles.