Skip to content

VMware vSphere 8.0 vCenter Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The vCenter Server must use unique service accounts when applications connect to vCenter.

    <VulnDiscussion>To not violate nonrepudiation (i.e., deny the authenticity of who is connecting to vCenter), when applications need to connec...
    Rule Medium Severity
  • SRG-APP-000516

    <GroupDescription></GroupDescription>
    Group
  • The vCenter Server must protect the confidentiality and integrity of transmitted information by isolating Internet Protocol (IP)-based storage traffic.

    &lt;VulnDiscussion&gt;Virtual machines might share virtual switches and virtual local area networks (VLAN) with the IP-based storage configurations...
    Rule Medium Severity
  • SRG-APP-000358

    <GroupDescription></GroupDescription>
    Group
  • The vCenter server must be configured to send events to a central log server.

    &lt;VulnDiscussion&gt;vCenter server generates volumes of security-relevant application-level events. Examples include logins, system reconfigurati...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules