VMware vSphere Security Hardening Guides (Public Draft) Released

Share Button

I have been excitedly anticipating the release of the official VMware vSphere security hardening guides for a while now and the good news is that a public draft has just been made available. According to the VMware announcement these vSphere hardening guides have the following “highlights” over the previous VI3 guides:

  • Structure: this version uses a standardized format, with formally defined sections, templates, and reference codes.  The goal is to increase clarity and reduce ambiguity, make it easier to reference individual guidelines, and most of all, enhance the ability to automate guideline enforcement.
  • Recommendation levels: in following with the formats used by NIST, CIS, and others, this guide categorizes all guidelines into three security levels.  Instead of recommending a single set of guidelines for all environments, this guide encourages more of a risk-based approach, so that individual administrators can decide which guidelines apply to their environment.

There are over 100 recommendations between the guides which are open for public comment during the next month – though as the announcement mentions the final versions probably won’t differ greatly due to them already being part of a private review process.  Definitely worth a read to ensure your vSphere environment is following security best practices where possible.

Click here - VMware vSphere Security Hardening Guides

Share Button
About Simon Seagrave

Simon is a UK based Virtualization, Cloud & IT Technology Evangelist working as a Senior Technology Consultant and vSpecialist for EMC. He loves working in the ever changing IT industry & spends most of his time working with Virtualization, Cloud & other Enterprise IT based technologies, in particular VMware, EMC and HP products.

As well as on this site, you can find him on Twitter and Google+

Comments

  1. James Pearce says:

    Hi Simon, thanks for posting this.

Trackbacks

  1. [...] (@simonlong_) and Simon Seagrave(@kiwi_si) have posted entries on their blog sites:The SLOG and Techhead today about the new vSphere 4.0 Security Hardening Guide. The guide looks like a brilliant resource [...]

  2. [...] This post was mentioned on Twitter by VMware Planet V12n, TechHead.co.uk (Simo and Gregg Robertson, Luc Dekens. Luc Dekens said: RT: @PlanetV12n: VMware vSphere Security Hardening Guides (Public Draft) Released (TechHead) http://bit.ly/5oaDqH [...]

Speak Your Mind

*

Powered by sweet Captcha