Detections
Analytics

TNS VMWare vSphere Best Practices

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: TNS VMWare vSphere Best Practices

Updated: 1/13/2020

Authority: TNS

Plugin: VMware

Revision: 1.27

Estimated Item Count: 183

Audit Items

DescriptionCategories
ESXi: active-directory-verify-cam-certificate

IDENTIFICATION AND AUTHENTICATION

ESXi: auth-validate-interval

IDENTIFICATION AND AUTHENTICATION

ESXi: blue-screen-timeout

ACCESS CONTROL

ESXi: config-firewall-access - 'Active Directory All blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'CIM Secure Server allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'CIM Server allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'CIM SLP allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'DHCP Client allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'DHCPv6 blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'DNS Client allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'DVFilter blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'DVSSync blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'Fault Tolerance blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'FTP Client blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'gdbserver blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'HBR allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'httpClient blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'IKED blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'NFC allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'NFS Client blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'NTP Client blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'SNMP Server allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'Software iSCSI Client blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'SSH Client blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'SSH Server allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'syslog blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'vCenter Update Manager blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'VM serial port connected over network blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'VM serial port connected to vSPC blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'vMotion allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'VMware vCenter Agent allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'vSphere Client allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'vSphere High Availability Agent blocked'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'vSphere Web Access allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-firewall-access - 'WOL allowed'

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: config-ntp

AUDIT AND ACCOUNTABILITY

ESXi: config-persistent-logs

AUDIT AND ACCOUNTABILITY

ESXi: digest-crypto-hash

SYSTEM AND COMMUNICATIONS PROTECTION

ESXi: disable-dcui

CONFIGURATION MANAGEMENT

ESXi: disable-esxi-shell

CONFIGURATION MANAGEMENT

ESXi: disable-ssh

CONFIGURATION MANAGEMENT

ESXi: enable-ad-auth

IDENTIFICATION AND AUTHENTICATION

ESXi: enable-chap-auth

IDENTIFICATION AND AUTHENTICATION

ESXi: enable-debug-buddy

CONFIGURATION MANAGEMENT

ESXi: enable-remote-syslog

AUDIT AND ACCOUNTABILITY

ESXi: esx-admins-autoadd

ACCESS CONTROL

ESXi: esx-admins-group-update

ACCESS CONTROL

ESXi: esx-configstatus

CONFIGURATION MANAGEMENT

ESXi: esx-overallstatus

CONFIGURATION MANAGEMENT

ESXi: ft-backup-connect

SYSTEM AND COMMUNICATIONS PROTECTION