VMware vSphere Hardening Guide Introduction for ESXi and ESX

| | TrackBacks (0)

Take a look, very thourough overview and specifics on locking down and hardening your infrastructure! Includes details on specialized environments that have some unique aspect that makes them
especially vulnerable to sophisticated attacks so all your bases are covered!

VMware vSphere Hardening Guide Introduction


VMware vSphere Hardening Guide Introduction
Scope
This set of documents provides guidance on how to securely deploy VMware®
vSphere™ 4.1 (“vSphere”) in a production environment. The focus is on initial
configuration of the virtualization infrastructure layer, which covers the following:
-­‐ The virtualization hosts (both VMware ESX® 4 and VMware ESXi™ 4)
-­‐ Configuration of the virtual machine container (NOT hardening of the
guest operating system (OS) or any applications running within)
-­‐ Configuration of the virtual networking infrastructure, including the
management and storage networks as well as the virtual switch
(but NOT security of the virtual machine’s network)
-­‐ VMware vCenter™ Server, its database and client components
-­‐ VMware Update Manager (included because the regular update and
patching of the ESX/ESXi hosts and the virtual machine containers are
essential to maintaining the security of the environment)
The following are specifically out of scope and are NOT covered:
-­‐ Security of the software running inside the virtual machine, such as OS
and applications, and the traffic traveling through the virtual machine
networks
-­‐ Security of any other add-on products, such as SRM
-­‐ Detailed operational procedures related to maintaining security, such as
event monitoring, auditing and privilege management. Guidance is
provided on general areas in which to perform these important tasks, but
details on exactly how to perform them are out of scope.

0 TrackBacks

Listed below are links to blogs that reference this entry: VMware vSphere Hardening Guide Introduction for ESXi and ESX.

TrackBack URL for this entry: http://www.kennethhunt.com/mt/mt-tb.cgi/1939

About this Entry

This page contains a single entry by klsh published on May 12, 2011 4:11 PM.

Pentadactyl is VIM bindings for your Firefox Browser was the previous entry in this blog.

Brew and Mac OS X Lion Error: Failed while executing git pull http://github.com/mxcl/homebrew.git master is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.