Information
http://kb.vmware.com/kb/1008077
Solution
From the vSphere web client-1. Select the host
2. Select 'Manage' -> 'Security Profile'.
3. Scroll down to 'Lockdown Mode'.
4. Click 'Edit...'.
5. Select the 'Enable Lockdown Mode' checkbox.To implement the recommended configuration state, run the following PowerCLI
command-# Enable lockdown mode for each host
Get-VMHost | Foreach { $_.EnterLockdownMode() }
Impact-There are some operations, such as backup and troubleshooting, that require direct access
to the host. In these cases Lockdown Mode can be disabled on a temporary basis for
specific hosts as needed, and then re-enabled when the task is completed.
Note- Lockdown mode does not apply to users listed in the DCUI.Access list, which by
default includes the root user.
Default Value-The prescribed state is not the default state.