Guideline ID : ESXi.create-local-admin
Vulnerability Discussion : By default each ESXi host has a single “root” admin account that is used for local administration and to connect the host to vCenter Server. To avoid sharing a common root account it is recommended on each host to create at least one named user account and assign it full admin privileges and to use this account in lieu of a shared “root” account. Set a highly complex password for the “root” account and secure it in a safe location. Limit the use of “root” but do not remove the “root” account.
Risk … Read The Rest ......
A Risk Profile is a way to categorize the security level. Some Security guidelines are “1” or some are “2” & “3” because these are things you should be doing as per the organization requirement
Example: Setting users is something you do for all Risk Profiles. We should look at Risk Profile “3” is that it’s based on common sense/industry standard practice IT Operations.
Here is the detailed categorization for the each or the Risk profile.
Risk Profile 1: These security guidelines that can only be applicable in the highest security environments. E.g. Top-secret government or military, extremely sensitive data, … Read The Rest ......
While i was preparing for my vSphere Design Exam i found this interesting topic and most important to use in Every Well designed infrastructure for security and hardening of the environment. Hardening vSphere as per customer requirement is comes with may challenges like below.
- Understand the customer exactly what he is looking for.
- Also Contained a mix of
- Operational Guidance – How you use the product in your environment
- Programmatic Guidance – What settings should be applied OR audited
- They can be addressed or mitigated in many ways
- They are generally left open to interpretation
… Read The Rest ......
Recently i deployed the vSphere update manager in my lab to test some of the functionality . After testing is done i wanted to remove the plugin from vcsa but disabling it doesnt work as my vCenter keep searching and querying the update manager server. So i thought to remove it. As may be most of the people know how to remove it but i thought to share it with the people in more details. There is an VMWare KB is also there to do so. so lets start.
In a web browser, navigate to http://vCenter_Server_name_or_IP/mob.… Read The Rest ......
The hottest topic revolving in virtualization in recent times has been about the release of VMware vSphere 6.7. What followed was the increased expectations from the users to get a backup support for vSphere 6.7. While the majority of the backup vendors are scrambling to make progress, we have an update already released to support Backup for vSphere 6.7.
VMware 6.7 was announced on 17th of April, 2018.
In less than 60 days after the official release, Vembu is geared up to support 6.7.
With this latest upgrade, VMware aimed to create a consistent infrastructure for users across all … Read The Rest ......
Today i logged in to my Lab which is hosted in vCloud Air LAB powered by OVH, unfortunately i forgot the password of my SSO account as i didnt used from the long time and somehow i was not able to find it in my Password DB. Anyways then i managed to reset the password for my SSO account so i thought to share it with you all so if sometime anyone got stuck can reset the password via the same way. Lets start.
I am using vcsa 6.5 with external PSC controller. Just for info as its … Read The Rest ......
If you are looking for the downloading the vShpere Client of any version. there is an repositroy from Vmware where you can download all in one place.
VMware KB – 2089791
Link : VMware vSphere Clients Repository
This morning when I woke up I was reading tweets on my handset and i just came up the vExpert announcement for 2017. I was more curious as i also applied for the vSAN & NSX programme too. I opened the announcement page and voila!! My name was on the both list (vExpertvSAN and NSX) . I selected in vExpert NSX programme 2nd Time this time and vSAN is the new achievement for me.
Here are the links for the complete vExpert lists
vExpert vSAN : https://blogs.vmware.com/vmtn/2017/08/vexpert-nsx-2017-award-announcement.html
vExpert NSX : https://blogs.vmware.com/vmtn/2017/08/vexpert-2017-vsan-announcement.html
VMware introduced a easy to use vSAN Sizer for Data Center Scale Deployments. Just make your data ready and login with your my.vmware account and your are good to go.
Try Here : vSAN Sizer for Data Center Scale and Deployments
The sizing recommendation is divided into 3 sections.
Section -1: Details of the total number of servers for the vSAN cluster. The total raw storage, the total usable storage and best match ReadyNode™. The information provided in this section pertains to the entire cluster
Section:2 This section provides CPU, Memory, Cache, Capacity and Disk Group details per server
Section:3 … Read The Rest ......