$readOnlyPrivileges = Get-VIPrivilege -Role Readonly
$role1 = New-VIRole -Privilege $readOnlyPrivileges -Name "TsmTDP for VMware"

$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Allocate space","Browse datastore","Configure datastore","Move datastore","Remove datastore","Rename datastore","Update virtual machine files","Low level file operations")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Register extension","Unregister extension","Update extension")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Create task","Update task","Cancel task")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Licenses","Log event" )
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Manage custom attributes","Set custom attribute")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Storage partition configuration","Assign network")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Add existing disk","Add new disk","Add or remove device")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Advanced","Change CPU count","Change resource")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Disk change tracking","Disk Lease","Host USB device")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Memory","Modify device settings","Raw device","Reload from path","Remove disk")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Rename","Reset guest information","Set annotation","Settings","Swapfile placement" -Group "Virtual machine")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Upgrade virtual machine compatibility" -Group "Virtual machine")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Guest Operation Modifications","Guest Operation Program Execution","Guest Operation Queries")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Allow disk access","Allow read-only disk access","Allow virtual machine download")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Create snapshot","Remove Snapshot","Rename Snapshot","Revert to snapshot")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Power Off","Power On","Create new","Register","Remove","Unregister" -Group "Virtual machine")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Add virtual machine","Assign resource pool","Create" -Group "vApp")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Assign virtual machine to resource pool","Migrate powered off virtual machine","Migrate powered on virtual machine" -Group "Resource")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "ConfigureIBMDataProtection" -Group "Global")
#**** TDP V7.1.6 &  V8.1 only
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "IBMDataProtection" -Group "Datacenter")

#Table 2 : Required tagging privileges for the data mover
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Assign or Unassign Inventory Service Tag" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Create Inventory Service Tag" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Delete Inventory Service Tag" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Create Inventory Service Tag Category" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Delete Inventory Service Tag Category" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "ModifyUsedByForCategory" -Group "vCenter Inventory Service")
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "ModifyUsedByForTag" -Group "vCenter Inventory Service")


**** V5.5
$role1 = Set-VIRole –Role $role1 –AddPrivilege (Get-VIPrivilege "Upgrade virtual hardware")