Skip to content
Log In

III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000315-WSR-000003

    Group
    Show

  • Envoy must exclusively use the HTTPS protocol for client connections.

    Remotely accessing vCenter via Envoy involves sensitive information going over the wire. To protect the confidentiality and integrity of these communications, Envoy must be configured to use an enc...
    Rule Medium Severity
    Show

  • SRG-APP-000358-WSR-000063

    Group
    Show

  • Envoy (rhttpproxy) log files must be shipped via syslog to a central log server.

    Envoy produces several logs that must be offloaded from the originating system. This information can then be used for diagnostic purposes, forensics purposes, or other purposes relevant to ensuring...
    Rule Medium Severity
    Show

  • SRG-APP-000358-WSR-000063

    Group
    Show

  • Envoy log files must be shipped via syslog to a central log server.

    Envoy rsyslog configuration is included in the "VMware-visl-integration" package and unpacked to "/etc/vmware-syslog/vmware-services-envoy.conf". Ensuring the package hashes are as expected also en...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules