{{ $t('index.defaultHeader.logo') }}

Sangfor Cloud Platform (SCP)

Enterprise Cloud Computing Platform Built on Business-Centric HCI.

{{ $t('productSubHeader.tabs.document') }}

{{ $t('productSubHeader.tabs.bestPractice') }}

{{ $t('productSubHeader.tabs.case') }}

{{ $t('productSubHeader.tabs.tool') }}

{{ $t('productSubHeader.tabs.bbs') }}

{{ $t('productSubHeader.searchLabel') }}

{{ $t('productDocDetail.guideClickSwitch') }}

{{ $t('productDocDetail.know') }}

{{ $t('productDocDetail.dontRemind') }}

6.11.3

{{item.code}}

Release Notes

Overview

Agentless Backup Development Guide

Introduction

Agentless Backup Deployment

Network Deployment

Backup Account Creation

Agentless Backup Instructions

SFVDDK Installation and Development

Sample Code

Advanced Features

Backup and Recovery of VMs with TPM Enabled

Encrypted VM Backup And Recovery

Precautions

Agentless Backup API 3rd-party Integration User Guide

Connection Preparations

Connect to Agentless Backup via SCP

Feature Connection

Platform Connection

Backup and Recovery

Notes

Product Architecture

Key Functionalities

aSV

aSAN

aNET

aSecurity

Management

Application Scenarios

Private Cloud Solution

Disaster Recovery Solution

Database Management Solution

Server Virtualization Solution

GPU Scenario Solution

VDI Solution

Installation And Deployment

Networking Installation Introduction

Preparation Before Installation

Witness Node System Installation (Optional)

Service Packs

HCI Cluster Initialization

HCI Licensing

Platform License

Authorization Change Description

Virtual Machine Service

Introduction

VM Types and Specifications

Related Concepts

Migration and Scheduling

Resource and Configuration Changes

Attribute and Tag Management

Expiration Date and Group Management

VM Security and Authentication

Enable Turbo Mode

FAQ

Networking Service Manual

Topology

IP and Bandwidth

Network Insight

Traffic Mirroring

Network Deployment

Shared Service Network

Image Service

Introduction

Operation Procedures

Create Images

Public VM Images Management

Private image management

View Private VM Images

Migration

Information Collection and Analysis

Information Collection for Common Migration

Migration Design

SCMT

Resource Assessment

VM Configuration Plan

Migration Feasibility Assessment

Migration Implementation

Migration Implementation

SCMT

aHM

ISO

Migration verification

Rollback

VM Settings on HCI

Troubleshooting

SCMT

Agent Installation Issues

Issues When Creating Migration Tasks

Issues During Migration Process

Issues After Migration

Storage Service

Overview

Virtual Storage Creation and Management

Storage Area Network Settings

Virtual Storage Pool Creation

Virtual Storage Pool Management

FAQ

Local Storage Pool Creation and Management

FAQ

External Storage Integration and Management

External Storage Management

FAQ

Backup Service

Overview

Backup Terminology

Backup Types

Quick Backup

CDP

Backup Creation and Management

Backup Creation

Quick Backup

CDP

Backup Management

Quick Backup

CDP

Backup Settings

FAQ

Snapshot Service

Feature Introduce

Snapshot Write & Read processes

Snapshots Configuration

Snapshots Management

Consistency Snapshot Management

Snapshot Polices Management

Correlated Snapshotting

FAQ

Primary-Secondary Disaster Recovery

Product Introduction

Applicable Scenarios

Constraints and Restrictions

Assessment and Planning

DR Network Planning

Installation and Deployment

SP Check with aDeploy

DR Configuration Guide

Primary/Secondary DR Configuration

Recovery Configuration

Multiple-Tenant Management

Feature Description

Multiple-Tenant Configuration

MSP Management

Multiple-Tenant Management

Tenant User

Tenant User Guide

Compute

Virtual Machine

Image

Networking

Network Topology

IP And Bandwidth

Network Deployment

Application Delivery Controller (ADC)

Security

Reliability

Monitor and Management

Monitor Center

Product Introduction

Integration with Third-Party Monitoring Ecosystem

Monitor Center Configuration Guide

Monitoring Configuration Best Practices

Cluster Management

Overview

Terminology

Cluster Creation and Management

Cluster Creation

SCP Deployment

Cluster Management

HCI Cluster Management

Cluster Reliability

HA

HA Test Guide

Cluster Maintenance

Expansion

Upgrade

SCP Upgrade

Patch

FAQ

Platform Management

User Management

System management

Security Service

HCI Platform

Access Control & Identity Management

SCP Platform

Access Control & Identity Management

Virtual Machine

vNGAF

VM Disk Encryption

Proactive Maintenance & Vulnerability Management

Comprehensive Audits with the aDeploy Tool

Maintenance & Operations Guide

SCP O&M Guide

Monitoring and Alerting Module

Health Check

aDeploy

Sangfor CLI

SCP Routine O&M Guide

Daily O&M Guidelines

Weekly O&M Guidelines

Monthly O&M Guidelines

Basic Service Adjustment Guide

System Power-On and Power-Off

Upgrade and SP Installation Guidelines

Network Configuration Adjustment

Capacity Expansion

SCP O&M Risks and Precautions

aDeploy Use Guide

Overview

Introduction

Auto Upgrade

Key Features

Installation and Upgrade

Manual Upgrade

Uninstall aDeploy

Usage

Health Check

Toolkit

Pre-change Check

Pre-upgrade Check

Feedback

Troubleshooting Common Issues

Windows Compatibility Issues

Sangfor Cloud Platform (SCP)

{{ breadTitle }}

Security Service

Platform-Level Security Configuration

Access Control & Identity Management

Configure Role-Based Access Control (RBAC)

{{sendMatomoQuery("Sangfor Cloud Platform (SCP)","Configure Role-Based Access Control (RBAC)")}}

Configure Role-Based Access Control (RBAC)

{{ $t('productDocDetail.updateTime') }}: 2025-12-22

Create custom roles with specific permissions and assign users to those roles based on the principle of least privilege. This ensures users only have access to the resources and functions necessary for their job.

Configuration Steps:

Login to HCI navigate to System > Administrators and Permissions > Permissions.
Click Add New Account to create a new permission profile (role). Fill in the name and description. There are 3 roles here.

• System admin: permissions on resource management and partial permissions on system administration.

• Security Admin: permissions on user and authority management

• Audit Admin: permissions on management of operation logs

Then select the group you want put the new role in and fill in the password.

If you create a new system admin role, you can define the Resource Permissions & Quota by clicking the Settings button.

• Click the Physical Resources tab, select the needed storage, and modify their Permissions to the permissions added above.

• Click the Virtual Resources tab, select the needed VMs, and modify their Permissions to the permissions added above.

• Click the Resource Quota tab, configure the CPU, memory, and storage quotas for the agentless backup account, and click OK to create the account. If the quota is too low, VMs may be unable to be created.