CIS VMware ESXi 5.1 V1.0.1 L1

Details Disable VDS network healthcheck if not used. *Rationale* Network Healthcheck is disabled by default. Once enabled, the healthcheck packets...

Details http://pubs.vmware.com/vsphere-51/topic/com.vmware.ICbase/PDF/ws8x_esx51_vmci_sockets.pdf Solution To implement the recommended configuration state, run the following PowerCLIcommand-# Add the setting to all VMsGet-VM |...

Details Any enabled or connected device represents a potential attack channel. Users and processes without privileges on a virtual machine...

Details Any enabled or connected device represents a potential attack channel. Users and processes without privileges on a virtual machine...

Details http://pubs.vmware.com/vsphere-51/topic/com.vmware.vsphere.security.doc/GUID-A261E6D8-03E4-48ED-ADB6-473C2DAAB7AD.html Solution Leverage VMware’s SSL Certificate Automation Tool to install CA-signed SSL certificates. Fore more information on this tool,...

Details By enabling bidirectional CHAP authentication, an additional level of security enables the initiator to authenticate the target. *Rationale* vSphere...

Details http://kb.vmware.com/kb/1008077 Solution From the vSphere web client-1. Select the host2. Select ‘Manage’ -> ‘Security Profile’.3. Scroll down to ‘Lockdown...

Details Verify that SNMP (Simple Network Management Protocol) is configured and that all the settings are correct. If SNMP is...

Details Verify that SNMP (Simple Network Management Protocol) is configured and that all the settings are correct. If SNMP is...

Details Do not use Native VLAN ID 1. *Rationale* ESXi does not use the concept of native VLAN. Frames with...