Ensure unnecessary or superfluous functions inside VMs are disabled
Details Disable all system components that are not needed to support the application or service running on the VM. VMs...
- Home
- Security Hardening
- CIS VMware ESXi 7.0 V1.1.0 L1
CIS VMware ESXi 7.0 V1.1.0 L1
Ensure unnecessary parallel ports are disconnected
Details Ensure that no parallel port is connected to a virtual machine unless required. For a parallel port to be...Ensure unnecessary serial ports are disconnected
Details Ensure that no serial port is connected to a virtual machine unless required. For a serial port to be...Ensure unnecessary USB devices are disconnected
Details Ensure that no USB device is connected to a virtual machine unless required. For a USB device to be...Ensure use of the VM console is limited
Details The VM console enables you to connect to the console of a VM, in effect seeing what a monitor...Ensure VM Console Drag and Drop operations is disabled
Details VM console drag and drop operations should be disabled. Rationale: VM console drag and drop operations are disabled by...Ensure Virtual Distributed Switch Netflow traffic is sent to an authorized collector
Details The vSphere VDS can export Netflow information about traffic crossing the VDS. These exports are not encrypted and can...Ensure VM Console Copy operations are disabled
Details VM console copy operations should be disabled. Rationale: VM console copy operations are disabled by default (not explicitly specified);...Ensure VM Console GUI Options is disabled
Details VM console and paste GUI options should be disabled. Rationale: VM console and paste GUI options are disabled by...Ensure vSphere Authentication Proxy is used when adding hosts to Active Directory
Details vSphere Authentication Proxy enables ESXi hosts to join a domain without using Active Directory credentials. vSphere Authentication Proxy enhances...