Skip to content
Log In

VMware vSphere 8.0 vCenter Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000516

    Group
    Show

  • SRG-APP-000516

    Group
    Show

  • The vCenter Server must reset port configuration when virtual machines are disconnected.

    Port-level configuration overrides are disabled by default. Once enabled, this allows for different security settings to be set from what is established at the Port Group level. If overrides are no...
    Rule Medium Severity
    Show

  • SRG-APP-000516

    Group
    Show

  • The vCenter Server must disable Secure Shell (SSH) access.

    vCenter Server is delivered as an appliance, and intended to be managed through the VAMI, vSphere Client, and APIs. SSH is a troubleshooting and support tool and should only be enabled when necessa...
    Rule Medium Severity
    Show

  • SRG-APP-000516

    Group
    Show

  • The vCenter Server must display the Standard Mandatory DOD Notice and Consent Banner before logon.

    Display of the DOD-approved use notification before granting access to the application ensures privacy and security notification verbiage used is consistent with applicable federal laws, Executive ...
    Rule Medium Severity
    Show

  • The vCenter Server must require multifactor authentication.

    Without the use of multifactor authentication, the ease of access to privileged functions is greatly increased. Multifactor authentication requires using two or more factors to achieve authentica...
    Rule Medium Severity
    Show

  • The vCenter Server must prohibit password reuse for a minimum of five generations.

    Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. To meet password policy requirements, passwords must be...
    Rule Medium Severity
    Show

  • The vCenter Server passwords must contain at least one numeric character.

    Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resistin...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules