vCenter: vcenter-8.vami-time

Information

vCenter Server must have reliable time synchronization sources. Cryptography, audit logging, cluster operations, and incident response/forensics heavily rely on synchronized time. The recommended practice for NTP is to have at least four sources. It is not advisable to have only two sources, as having one source is preferable to having two.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

(Get-CisService -Name "com.vmware.appliance.timesync").set("NTP")
(Get-CisService -Name "com.vmware.appliance.ntp").set("0.vmware.pool.ntp.org,1.vmware.pool.ntp.org,2.vmware.pool.ntp.org,3.vmware.pool.ntp.org")

See Also

https://github.com/vmware/vcf-security-and-compliance-guidelines/raw/refs/heads/main/security-configuration-hardening-guide/vsphere/8.0/