TechHead

Virtualization blog also covering Cloud, Windows & Tech how-to

  • Home
  • Blog Categories
    • VMware
      • VMware “How To” Posts
      • VMware Troubleshooting
      • VMware Workstation & Fusion
      • VMware Backup & Replication
      • VMware vCloud Director
      • VMware Certification
      • VMware Horizon
      • VMware PowerCLI
      • VMware Security
      • VMware Training
      • VMware User Group & Community
      • VMware View
      • VMworld
      • VMware Useful Links
    • EMC
      • Virtual Storage Appliance (VSA)
      • vSphere VSI Plugin
    • HP
      • Proliant Servers
    • Microsoft
      • MS Windows Server
      • MS Hyper-V
      • MS Exchange
      • MS SQL Server
      • MS PowerShell
    • General Tech
    • Cloud
    • Networking
    • Iomega
    • Apple
    • Cisco
    • Linux
    • Internet & Web
    • WordPress
  • About Me
  • Home Labs
  • VMware Tools
  • Crypto Links
  • Cool Tech Links
  • Recommended Podcasts
    • vChat Podcast Episodes
You are here: Home / VMware / Security / VMware vSphere 5.5 U1 Hardening Guide Available

VMware vSphere 5.5 U1 Hardening Guide Available

12 June 2014 by Simon Seagrave Leave a Comment

VMware vSphere 5.5 U1 Hardening GuideThe VMware vSphere Hardening Guide is something you should always be familiar with and keep stashed away in your vArmory of useful things.  This MS Excel based document/guide contains valuable information and a checklist of the settings and best practices that you should be applying to your vSphere infrastructure to ensure that it is secure against the risk of common exploits, etc.

Mike Foley and the VMware vSphere security team have just released the latest update to the vSphere hardening guide which covers vSphere 5.5 Update 1 (U1).  This is the latest update since the vSphere 5.5 version of the Hardening guide and contains all the usual great stuff pertaining to securing your vSphere environment, but also includes the following four new updates (along with minor amendments):

enable-VGA-Only-Mode: Used for server VM’s that don’t need a graphical console. e.g. Linux web servers, Windows Core, etc.
disable-non-essential-3D-features: Remove 3D graphic capabilities from VM’s that don’t need them.
use-unique-roles: A new companion control to use-service-accounts. If you have multiple service accounts then each one should have a unique role with just enough privs to accomplish their task. This is in line with least-priv operations
change-sso-admin-password: A great catch. When installing Windows vCenter, you’re prompted to change the password of [email protected] When installing the VCSA in a default manner you are not. This control reminds you to go back and do that.

As always I recommend that you download, familiarise and apply, where necessary, the security recommendations and best practices outlined in this guide, this will help you sleep at night knowing that your vSphere environment is better secured.

Download your copy of the vSphere 5.5 U1 Hardening Guide from VMware’s dedicated page here, where you can also download vSphere Hardening Guides for previous versions of vSphere.

Happy securing!

Filed Under: Security, VMware Tagged With: hardening guide, Security, vSphere

About Simon Seagrave

Simon is a UK based Virtualization, Cloud & IT Technology Evangelist working as a Senior Technology Consultant and vSpecialist for EMC. He loves working in the ever changing IT industry & spends most of his time working with Virtualization, Cloud & other Enterprise IT based technologies, in particular VMware, EMC and HP products.

As well as on this site, you can find him on Twitter and Google+

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Looking For Something?

Site Sponsors

Click here to become a sponsor

Awards

VMware vExpert

About Me

Simon Seagrave - TechHead - VMware EMC HP IT Tech Blogger My name is Simon Seagrave and I am a Massachusetts (ex UK) based Technical Marketing Consultant working for Dell EMC. I love my work & spend most of my time working with Virtualisation & other Enterprise IT based technologies, in particular VMware, EMC and Dell products. I am a VMware vExpert (2009 - Present).

Recent Post Comments

  • Michael on [Fix] How to access Starbucks WiFi when you aren’t redirected to the login page
  • Michal on "Cannot change the host configuration" error message when adding disk storage to a VMware vSphere ESXi Host
  • Jorge on Email Fail – virtual_aliases via virtual_aliases router force address failure
  • Javier on Email Fail – virtual_aliases via virtual_aliases router force address failure
  • Robert Baker on How to copy or move files and folders whilst maintaining their original time date stamp.

Recent Posts

  • [Fix] How to access Starbucks WiFi when you aren’t redirected to the login page
  • Fully Featured VMware vSphere Web Client (finally) On The Way
  • [Podcast] vChat Episode 45–Things Crypto-Currency and Crypto-Mining
  • [Link] Dell EMC Interactive Demos
  • "Cannot change the host configuration" error message when adding disk storage to a VMware vSphere ESXi Host

EZ Fat Footer #1

This is Dynamik Widget Area. You can add content to this area by going to Appearance > Widgets in your WordPress Dashboard and adding new widgets to this area.

EZ Fat Footer #2

This is Dynamik Widget Area. You can add content to this area by going to Appearance > Widgets in your WordPress Dashboard and adding new widgets to this area.

Copyright © 2019 · Dynamik-Gen on Genesis Framework · WordPress · Log in