III - Administrative Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000089-WSR-000047
Group -
vSphere UI must generate log records for system startup and shutdown.
Logging must be started as soon as possible when a service starts and when a service is stopped. Many forms of suspicious actions can be detected by analyzing logs for unexpected service starts and...Rule Medium Severity -
SRG-APP-000118-WSR-000068
Group -
vSphere UI log files must only be accessible by privileged users.
Log data is essential in the investigation of events. If log data were to become compromised, competent forensic analysis and discovery of the true source of potentially malicious system activity w...Rule Medium Severity -
SRG-APP-000131-WSR-000051
Group -
vSphere UI application files must be verified for their integrity.
Verifying the vSphere UI application code is unchanged from its shipping state is essential for file validation and nonrepudiation of the vSphere UI. There is no reason the MD5 hash of the RPM orig...Rule Medium Severity -
SRG-APP-000131-WSR-000073
Group -
vSphere UI plugins must be authorized before use.
The vSphere UI ships with a number of plugins out of the box. Any additional plugins may affect the availability and integrity of the system and must be approved and documented by the information s...Rule Medium Severity -
SRG-APP-000141-WSR-000015
Group -
vSphere UI must not be configured with the "UserDatabaseRealm" enabled.
The vSphere UI performs user authentication at the application level and not through Tomcat. By default, there is no configuration for the "UserDatabaseRealm" Tomcat authentication mechanism. To el...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules