Detections
Analytics
vCenter : limit-user-login
Information
After someone has logged in to the vCenter Server system, it becomes more difficult to prevent what they can do. In general, logging in to the vCenter Server system should be limited to very privileged administrators, and then only for the purpose of administering vCenter Server or the host OS. Anyone logged in to the vCenter Server can potentially cause harm, either intentionally or unintentionally, by altering settings and modifying processes. They also have potential access to vCenter credentials, such as the SSL certificate.See Also
https://www.vmware.com/files/xls/hardeningguide-vsphere5-5-ga-released.xlsx
Item Details
Audit Name: VMWare vSphere 5.X Hardening Guide
Plugin: VMware
Control ID: bdc8c4cd702b665d5ae12bcb823a58cdf7d83125f2bc514b3c08b54b2bebb445