Details
http://kb.vmware.com/kb/1008077
Solution
From the vSphere web client-1. Select the host
2. Select ‘Manage’ -> ‘Security Profile’.
3. Scroll down to ‘Lockdown Mode’.
4. Click ‘Edit…’.
5. Select the ‘Enable Lockdown Mode’ checkbox.To implement the recommended configuration state, run the following PowerCLI
command-# Enable lockdown mode for each host
Get-VMHost | Foreach { $_.EnterLockdownMode() }
Impact-There are some operations, such as backup and troubleshooting, that require direct access
to the host. In these cases Lockdown Mode can be disabled on a temporary basis for
specific hosts as needed, and then re-enabled when the task is completed.
Note- Lockdown mode does not apply to users listed in the DCUI.Access list, which by
default includes the root user.
Default Value-The prescribed state is not the default state.
Supportive Information
The following resource is also helpful.
This control applies to the following type of system VMware.