Which is true when assigning global permissions in a single vSphere Single Sign-On domain in a multi-site configuration?

Which is true when assigning global permissions in a single vSphere Single Sign-On domain in a multi-site configuration?
A . Users assigned global permissions will be able to access objects and solutions across all Single Sign-On domains in an organization.
B . Users assigned global permissions will be able to access objects and solutions only in the same Single Sign-On site.
C . Users assigned global permissions will have administrator access across all objects and solutions in a Single Sign-On domain.
D . Users assigned global permissions will be able to access objects and solutions within that Single Sign-On domain.

View Answer

Answer: D

Explanation:

Global permissions are applied to a global root object that spans solutions, for example, both vCenter Server and vCenter Orchestrator. Use global permissions to give a user or group privileges for all objects in all object hierarchies. Each solution has a root object in its own object hierarchy. The global root object acts as a parent object to each solution object. You can assign global permissions to users or groups, and decide on the role for each user or group. The role determines the set of privileges. You can assign a predefined role or create custom roles.