VMware vSphere Security Hardening Report 5.1.0 (PROFILE1) --- Date: 03-23-2013 21:06:26

Grade: 18% F

COS Report
HOST Report
VCENTER Report
VM Report
VNETWORK Report

HOST Report Check36 total checksPASS - 11.1 %FAIL - 33.3 %REQUIRE MANUAL VALIDATION - 55.6 %
EntityCodeDescriptionStatusParameter CheckResolution/Fix
himalaya.primp-industries.comverify-install-mediaVerify integrity of software before installationMANUALN/AVerify SHA1 hash after downloading from VMware
himalaya.primp-industries.comapply-patchesKeep ESX/ESXi system properly patchedMANUALN/AN/A
himalaya.primp-industries.comenable-chap-authEnsure Bidirectional CHAP Authentication is enabled for iSCSI trafficFAILN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comenable-chap-authEnsure Bidirectional CHAP Authentication is enabled for iSCSI trafficFAILN/ACHAP should not be disabled when using iSCSI
himalaya.primp-industries.comenable-chap-authEnsure Bidirectional CHAP Authentication is enabled for iSCSI trafficFAILN/ACHAP name should be configured
himalaya.primp-industries.comvmdk-zero-outZero out VMDK files prior to deletionMANUALN/APlease refer to the HOST doc for further details
himalaya.primp-industries.commask-zone-sanMask and zone SAN resources appropriatelyMANUALN/AZoning and masking capabilities for each SAN switch and disk array are vendor specific as are the tools for managing LUN masking
himalaya.primp-industries.comesxi-no-self-signed-certsDo not use default self-signed certificates for ESX/ESXi communicationFAILN/AVMware default SSL cert should not be used
himalaya.primp-industries.comdisable-mobDisable Managed Object BrowserFAILN/Ahttps://himalaya.primp-industries.com/mob should be disabled
himalaya.primp-industries.comenable-nfc-sslUse SSL for Network File Copy (NFC)MANUALN/AAdd <nfc><useSSL>true</useSSL></nfc> to vCenter vpxd.cfg
himalaya.primp-industries.comenable-remote-syslogConfigure remote syslogPASSN/AN/A
himalaya.primp-industries.comconfig-persistent-logsConfigure persistent loggingPASSN/AN/A
himalaya.primp-industries.comenable-ad-authUse Active Directory for local user authenticationFAILN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comenable-auth-proxyWhen adding ESXi hosts to Active Directory use the vSphere Authentication Proxy to protect passwordsMANUALN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comconfig-firewall-accessConfigure the ESXi host firewall to restrict access to services running on the hostMANUALN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comconfig-ntpConfigure NTP time synchronizationPASSN/AN/A
himalaya.primp-industries.comlimit-cim-accessDo not provide root/administrator level access to CIM-based hardware monitoring tools or other 3rd party applicationsMANUALN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comremove-authorized-keysRemove keys from SSH authorized_keys fileMANUALN/APlease refer to the HOST doc for further details
himalaya.primp-industries.comconfig-snmpEnsure proper SNMP configurationFAILN/ASNMP is not configured on the host
himalaya.primp-industries.comverify-config-filesVerify contents of exposed configuration filesMANUALN/Ahttps://himalaya.primp-industries.com/host is available and should be monitored for file intergrity
himalaya.primp-industries.comverify-dvfilter-bindPrevent unintended use of VMsafe network APIsMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comverify-kernel-modulesVerify no unauthorized kernel modules are loaded on the hostMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comset-password-complexityEstablish a password policy for password complexityMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comverify-admin-groupVerify Active Directory ESX Admin group membershipMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comvpxuser-password-ageEnsure that vpxuser auto-password change meets policyMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comenable-lockdown-modeEnable Lockdown Mode to restrict root accessMANUALN/ALockdown mode is not enabled
himalaya.primp-industries.comdisable-esxi-shellDisable ESXi Shell unless needed for diagnostics or troubleshootingFAILN/APlease refer to HOST doc for further details
himalaya.primp-industries.comdisable-sshDisable SSHFAILN/APlease refer to HOST doc for further details
himalaya.primp-industries.comdisable-dcuiDisable DCUI to prevent all local administrative controlFAILN/APlease refer to HOST doc for further details
himalaya.primp-industries.comset-shell-timeoutSet a timeout for the ESXi Shell to automatically disabled idle sessions after a predetermined periodFAILN/ASet UserVars.ESXiShellTimeOut > 0
himalaya.primp-industries.comset-shell-interactive-timeoutSet a timeout to automatically terminate idle ESXi Shell and SSH sessionsFAILN/ASet UserVars.ESXiShellInteractiveTimeout > 0
himalaya.primp-industries.comenable-bpdu-filterEnable BPDU filter on the ESXi host to prevent being locked out of physical switch ports with Portfast and BPDU Guard enabledPASSN/AN/A
himalaya.primp-industries.comcreate-local-adminCreate a non-root user account for local admin accessMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comset-dcui-accessSet DCUI.Access to allow trusted users to override lockdown modeMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comenable-remote-dumpConfigure a centralized location to collect ESXi host core dumpsMANUALN/APlease refer to HOST doc for further details
himalaya.primp-industries.comenable-host-profilesConfigure Host Profiles to monitor and alert on configuration changesMANUALN/APlease refer to HOST doc for further details

VCENTER Report Check33 total checksPASS - 3.0 %FAIL - 3.0 %REQUIRE MANUAL VALIDATION - 93.9 %
EntityCodeDescriptionStatusParameter CheckResolution/Fix
reflex.primp-industries.comuse-supported-systemMaintain supported operating system database and hardware for vCenterMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comapply-os-patchesKeep vCenter Server system properly patchedMANUALN/AStay up-to-date on patches for Windows Server
reflex.primp-industries.comsecure-vcenter-osProvide standard Windows system protection on the vCenter Server hostMANUALN/AProvide Windows system protection
reflex.primp-industries.comlimit-user-loginAvoid unneeded user login to vCenter Server systemMANUALN/ASelf explantory
reflex.primp-industries.cominstall-with-service-accountInstall vCenter Server using a Service Account instead of a built-in Windows accountMANUALN/ASetup Service Account to run vCenter service
reflex.primp-industries.comrestrict-admin-roleSecure the vSphere Administrator role and assign it to specific usersMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comrestrict-guest-controlRestrict unauthorized vSphere users from being able to execute commands within the guest virtual machineMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comrestrict-Linux-clientsrestrict-Linux-clientsMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comcheck-privilege-reassignmentCheck for privilege re-assignment after vCenter Server restartsMANUALN/APlease refer to vCenter doc for further details & http://kb.vmware.com/kb/1021804
reflex.primp-industries.commonitor-admin-assignmentMonitor that vCenter Server administrative users have the correct Roles assignedMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comremove-revoked-certificatesRemove revoked certificates from vCenter ServerMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comremove-failed-install-logsClean up log files after failed installations of vCenter ServerMANUALN/APlease refer to vCenter doc for further details & http://kb.vmware.com/kb/1021804
reflex.primp-industries.comno-self-signed-certsDo not use default self-signed certificatesPASSN/AN/A
reflex.primp-industries.commonitor-certificate-accessMonitor access to SSL certificatesMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comremove-expired-certificatesRemove expired certificates from vCenter Server.MANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comrestrict-certificate-accessRestrict access to SSL certificatesMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comverify-ssl-certificatesAlways verify SSL certificatesMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comthick-client-timeoutSet a timeout for thick-client login without activityMANUALN/ASet inactivity timeout for the vSphere Client (thick client)
reflex.primp-industries.comrestrict-network-accessRestrict network access to vCenterMANUALN/AUse a local firewall or Windows systems to protect vCenter
reflex.primp-industries.comrestrict-vcs-db-userUse least privileges for the vCenter Server database userMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comblock-unused-portsBlock access to ports not being used by vCenterMANUALN/AVerify ports using http://kb.vmware.com/kb/1012382
reflex.primp-industries.comdisable-datastore-webDisable datastore Web browserMANUALN/AAdd <enableHttpDatastoreAccess>false</enableHttpDatastoreAccess> to vpxd.cfg
reflex.primp-industries.comdisable-mobDisable Managed Object BrowserFAILN/ADisable MOB by adding <enableDebugBrowse>false<enableDebugBrowse/> to vpxd.cfg
reflex.primp-industries.comrestrict-vum-db-userUse least privileges for the Update Manager database userMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comlimit-vum-usersLimit user login to Update Manager systemMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comaudit-vum-loginAudit user login to Update Manager systemMANUALN/APlease refer to vCenter doc for further details
reflex.primp-industries.comverify-client-pluginsVerify the Integrity of vSphere ClientMANUALN/AVerify plugin extensions under Plugins->Managed Plugins on the Installed Plugins tab
reflex.primp-industries.compatch-vum-osKeep Update Manager system properly patchedMANUALN/AKeep VUM patched
reflex.primp-industries.comsecure-vum-osProvide standard Windows system protection on the Update Manager hostMANUALN/AProvide Windows system protection
reflex.primp-industries.comno-vum-self-managementDo not configure Update Manager to manage its own VM or its vCenter Server's VMMANUALN/ASelf explanatory
reflex.primp-industries.comno-vum-self-signed-certsDo not use default self-signed certificatesMANUALN/APlease refer to vCenter doc for further details & http://kb.vmware.com/kb/1023011
reflex.primp-industries.comisolate-vum-airgapLimit the connectivity between Update Manager and public patch repositoriesMANUALN/APlease refer to the vCenter doc for further details
reflex.primp-industries.comsecure-vco-file-accessRestrict read access to VCO files with authentication data to administratorsMANUALN/APlease refer to the vCenter doc for further details

VM Report Check357 total checksPASS - 12.0 %FAIL - 68.3 %REQUIRE MANUAL VALIDATION - 19.6 %
EntityCodeDescriptionStatusParameter CheckResolution/Fix
reflexdisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
reflexdisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
reflexlimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
reflexdisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
reflexdisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
reflexdisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
reflexdisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
reflexdisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
reflexdisconnect-devices-floppyDisconnect unauthorized devicesPASSVirtualFloppyN/A
reflexdisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
reflexdisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
reflexdisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
reflexdisconnect-devices-ideDisconnect unauthorized devicesPASSVirtualIDEControllerN/A
reflexprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
reflexprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
reflexlimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
reflexdisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
reflexuse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
reflexdisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
reflexdisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
reflexdisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
reflexdisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
reflexdisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
reflexdisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
reflexdisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
reflexdisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
reflexdisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
reflexdisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
reflexdisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
reflexdisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
reflexdisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
reflexdisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
reflexdisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
reflexdisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
reflexdisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
reflexdisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
reflexdisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
reflexrestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
reflexdisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
reflexdisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
reflexdisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
reflexlimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
reflexverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
reflexverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
reflexverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
reflexverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
reflexsecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
reflexdisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
reflexuse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
reflexcontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
reflexminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
scofielddisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
scofielddisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
scofieldlimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
scofielddisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
scofielddisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
scofielddisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
scofielddisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
scofielddisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
scofielddisconnect-devices-floppyDisconnect unauthorized devicesPASSVirtualFloppyN/A
scofielddisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
scofielddisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
scofielddisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
scofielddisconnect-devices-ideDisconnect unauthorized devicesPASSVirtualIDEControllerN/A
scofieldprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
scofieldprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
scofieldlimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
scofielddisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
scofielduse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
scofielddisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
scofielddisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
scofielddisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
scofielddisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
scofielddisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
scofielddisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
scofielddisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
scofielddisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
scofielddisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
scofielddisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
scofielddisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
scofielddisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
scofielddisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
scofielddisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
scofielddisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
scofielddisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
scofielddisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
scofielddisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
scofielddisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
scofieldrestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
scofielddisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
scofielddisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
scofielddisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
scofieldlimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
scofieldverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
scofieldverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
scofieldverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
scofieldverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
scofieldsecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
scofielddisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
scofielduse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
scofieldcontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
scofieldminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
STA202Gdisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
STA202Gdisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
STA202Glimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
STA202Gdisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
STA202Gdisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
STA202Gdisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
STA202Gdisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
STA202Gdisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
STA202Gdisconnect-devices-floppyDisconnect unauthorized devicesFAILVirtualFloppyVM contains VirtualFloppy
STA202Gdisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
STA202Gdisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
STA202Gdisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
STA202Gdisconnect-devices-ideDisconnect unauthorized devicesPASSVirtualIDEControllerN/A
STA202Gprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
STA202Gprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
STA202Glimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
STA202Gdisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
STA202Guse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
STA202Gdisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
STA202Gdisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
STA202Gdisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
STA202Gdisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
STA202Gdisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
STA202Gdisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
STA202Gdisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
STA202Gdisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
STA202Gdisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
STA202Gdisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
STA202Gdisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
STA202Gdisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
STA202Gdisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
STA202Gdisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
STA202Gdisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
STA202Gdisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
STA202Gdisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
STA202Gdisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
STA202Gdisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
STA202Grestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
STA202Gdisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
STA202Gdisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
STA202Gdisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
STA202Glimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
STA202Gverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
STA202Gverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
STA202Gverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
STA202Gverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
STA202Gsecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
STA202Gdisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
STA202Guse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
STA202Gcontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
STA202Gminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
Synapsedisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
Synapsedisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
Synapselimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
Synapsedisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
Synapsedisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
Synapsedisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
Synapsedisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
Synapsedisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
Synapsedisconnect-devices-floppyDisconnect unauthorized devicesPASSVirtualFloppyN/A
Synapsedisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
Synapsedisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
Synapsedisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
Synapsedisconnect-devices-ideDisconnect unauthorized devicesFAILVirtualIDEControllerVM contains VirtualIDEController
Synapseprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
Synapseprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
Synapselimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
Synapsedisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
Synapseuse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
Synapsedisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
Synapsedisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
Synapsedisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
Synapsedisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
Synapsedisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
Synapsedisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
Synapsedisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
Synapsedisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
Synapsedisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
Synapsedisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
Synapsedisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
Synapsedisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
Synapsedisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
Synapsedisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
Synapsedisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
Synapsedisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
Synapsedisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
Synapsedisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
Synapsedisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
Synapserestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
Synapsedisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
Synapsedisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
Synapsedisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
Synapselimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
Synapseverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
Synapseverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
Synapseverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
Synapseverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
Synapsesecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
Synapsedisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
Synapseuse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
Synapsecontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
Synapseminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
UbuntuDevdisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
UbuntuDevdisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
UbuntuDevlimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
UbuntuDevdisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
UbuntuDevdisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
UbuntuDevdisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
UbuntuDevdisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
UbuntuDevdisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
UbuntuDevdisconnect-devices-floppyDisconnect unauthorized devicesFAILVirtualFloppyVM contains VirtualFloppy
UbuntuDevdisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
UbuntuDevdisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
UbuntuDevdisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
UbuntuDevdisconnect-devices-ideDisconnect unauthorized devicesFAILVirtualIDEControllerVM contains VirtualIDEController
UbuntuDevprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
UbuntuDevprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
UbuntuDevlimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
UbuntuDevdisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
UbuntuDevuse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
UbuntuDevdisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
UbuntuDevdisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
UbuntuDevdisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
UbuntuDevdisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
UbuntuDevdisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
UbuntuDevdisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
UbuntuDevdisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
UbuntuDevdisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
UbuntuDevdisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
UbuntuDevdisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
UbuntuDevdisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
UbuntuDevdisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
UbuntuDevdisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
UbuntuDevdisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
UbuntuDevdisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
UbuntuDevdisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
UbuntuDevdisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
UbuntuDevdisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
UbuntuDevdisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
UbuntuDevrestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
UbuntuDevdisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
UbuntuDevdisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
UbuntuDevdisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
UbuntuDevlimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
UbuntuDevverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
UbuntuDevverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
UbuntuDevverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
UbuntuDevverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
UbuntuDevsecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
UbuntuDevdisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
UbuntuDevuse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
UbuntuDevcontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
UbuntuDevminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
VCAC-5.1disable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
VCAC-5.1disable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
VCAC-5.1limit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
VCAC-5.1disable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
VCAC-5.1disable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
VCAC-5.1disable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
VCAC-5.1disable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
VCAC-5.1disable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
VCAC-5.1disconnect-devices-floppyDisconnect unauthorized devicesFAILVirtualFloppyVM contains VirtualFloppy
VCAC-5.1disconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
VCAC-5.1disconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
VCAC-5.1disconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
VCAC-5.1disconnect-devices-ideDisconnect unauthorized devicesFAILVirtualIDEControllerVM contains VirtualIDEController
VCAC-5.1prevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
VCAC-5.1prevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
VCAC-5.1limit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
VCAC-5.1disable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
VCAC-5.1use-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
VCAC-5.1disable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
VCAC-5.1disable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
VCAC-5.1disable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
VCAC-5.1disable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
VCAC-5.1disable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
VCAC-5.1disable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
VCAC-5.1disable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
VCAC-5.1disable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
VCAC-5.1disable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
VCAC-5.1disable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
VCAC-5.1disable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
VCAC-5.1disable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
VCAC-5.1disable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
VCAC-5.1disable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
VCAC-5.1disable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
VCAC-5.1disable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
VCAC-5.1disable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
VCAC-5.1disable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
VCAC-5.1disable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
VCAC-5.1restrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
VCAC-5.1disable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
VCAC-5.1disable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
VCAC-5.1disable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
VCAC-5.1limit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
VCAC-5.1verify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
VCAC-5.1verify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
VCAC-5.1verify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
VCAC-5.1verify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
VCAC-5.1secure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
VCAC-5.1disable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
VCAC-5.1use-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
VCAC-5.1control-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
VCAC-5.1minimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details
William-XPdisable-disk-shrinking-wiperDisable virtual disk shrinkingFAILisolation.tools.diskwiper.disable=trueisolation.tools.diskwiper.disable needs to be configured
William-XPdisable-disk-shrinking-shrinkDisable virtual disk shrinkingFAILisolation.tools.diskshrink.disable=trueisolation.tools.diskshrink.disable needs to be configured
William-XPlimit-console-connections-twoLimit sharing of console connectionsFAILremotedisplay.maxconnections=2remotedisplay.maxconnections needs to be configured
William-XPdisable-console-copyExplicitly disable copy operationsFAILisolation.tools.copy.disable=trueisolation.tools.copy.disable needs to be configured
William-XPdisable-console-pasteExplicitly disable paste operationsFAILisolation.tools.paste.disable=trueisolation.tools.paste.disable needs to be configured
William-XPdisable-monitor-controlDisable VM Monitor ControlFAILisolation.monitor.control.disable=trueisolation.monitor.control.disable needs to be configured
William-XPdisable-console-dndExplicitly disable copy/paste operationsFAILisolation.tools.dnd.disable=falseisolation.tools.dnd.disable needs to be configured
William-XPdisable-console-gui-optionsExplicitly disable copy/paste operationsFAILisolation.tools.setguioptions.enable=falseisolation.tools.setguioptions.enable needs to be configured
William-XPdisconnect-devices-floppyDisconnect unauthorized devicesPASSVirtualFloppyN/A
William-XPdisconnect-devices-serialDisconnect unauthorized devicesPASSVirtualSerialPortN/A
William-XPdisconnect-devices-parallelDisconnect unauthorized devicesPASSVirtualParallelPortN/A
William-XPdisconnect-devices-usbDisconnect unauthorized devicesPASSVirtualUSBN/A
William-XPdisconnect-devices-ideDisconnect unauthorized devicesPASSVirtualIDEControllerN/A
William-XPprevent-device-interaction-connectPrevent unauthorized removal connection and modification of devicesFAILisolation.device.connectable.disable=trueisolation.device.connectable.disable needs to be configured
William-XPprevent-device-interaction-editPrevent unauthorized removal connection and modification of devicesFAILisolation.device.edit.disable=trueisolation.device.edit.disable needs to be configured
William-XPlimit-setinfo-sizeLimit informational messages from the VM to the VMX fileFAILtools.setinfo.sizelimit=1048576tools.setinfo.sizelimit needs to be configured
William-XPdisable-independent-nonpersistentAvoid using independent nonpersistent disksPASSN/AN/A
William-XPuse-secure-serial-communicationUse secure protocols for virtual serial port accessMANUALN/AN/A
William-XPdisable-unexposed-features-unitypushDisable certain unexposed featuresFAILisolation.tools.unity.push.update.disable=trueisolation.tools.unity.push.update.disable needs to be configured
William-XPdisable-unexposed-features-launchmenuDisable certain unexposed featuresFAILisolation.tools.ghi.launchmenu.change=trueisolation.tools.ghi.launchmenu.change needs to be configured
William-XPdisable-unexposed-features-memsfssDisable certain unexposed featuresFAILisolation.tools.memschedfakesamplestats.disable=trueisolation.tools.memschedfakesamplestats.disable needs to be configured
William-XPdisable-unexposed-features-getcredsDisable certain unexposed featuresFAILisolation.tools.getcreds.disable=trueisolation.tools.getcreds.disable needs to be configured
William-XPdisable-unexposed-features-autologonDisable certain unexposed featuresFAILisolation.tools.ghi.autologon.disable=trueisolation.tools.ghi.autologon.disable needs to be configured
William-XPdisable-unexposed-features-biosbbsDisable certain unexposed featuresFAILisolation.bios.bbs.disable=trueisolation.bios.bbs.disable needs to be configured
William-XPdisable-hgfsDisable certain unexposed featuresFAILisolation.tools.hgfsserverset.disable=trueisolation.tools.hgfsserverset.disable needs to be configured
William-XPdisable-unexposed-features-protocolhandlerDisable certain unexposed featuresFAILisolation.tools.ghi.protocolhandler.info.disable=trueisolation.tools.ghi.protocolhandler.info.disable needs to be configured
William-XPdisable-unexposed-features-shellactionDisable certain unexposed featuresFAILisolation.ghi.host.shellaction.disable=trueisolation.ghi.host.shellaction.disable needs to be configured
William-XPdisable-unexposed-features-toporequestDisable certain unexposed featuresFAILisolation.tools.disptoporequest.disable=trueisolation.tools.disptoporequest.disable needs to be configured
William-XPdisable-unexposed-features-trashfolderstateDisable certain unexposed featuresFAILisolation.tools.trashfolderstate.disable=trueisolation.tools.trashfolderstate.disable needs to be configured
William-XPdisable-unexposed-features-trayiconDisable certain unexposed featuresFAILisolation.tools.ghi.trayicon.disable=trueisolation.tools.ghi.trayicon.disable needs to be configured
William-XPdisable-unexposed-features-unityDisable certain unexposed featuresFAILisolation.tools.unity.disable=trueisolation.tools.unity.disable needs to be configured
William-XPdisable-unexposed-features-unity-interlockDisable certain unexposed featuresFAILisolation.tools.unityinterlockoperation.disable=trueisolation.tools.unityinterlockoperation.disable needs to be configured
William-XPdisable-unexposed-features-unity-taskbarDisable certain unexposed featuresFAILisolation.tools.unity.taskbar.disable=trueisolation.tools.unity.taskbar.disable needs to be configured
William-XPdisable-unexposed-features-unity-unityactiveDisable certain unexposed featuresFAILisolation.tools.unityactive.disable=trueisolation.tools.unityactive.disable needs to be configured
William-XPdisable-unexposed-features-unity-windowcontentsDisable certain unexposed featuresFAILisolation.tools.unity.windowcontents.disable=trueisolation.tools.unity.windowcontents.disable needs to be configured
William-XPdisable-unexposed-features-versiongetDisable certain unexposed featuresFAILisolation.tools.vmxdndversionget.disable=trueisolation.tools.vmxdndversionget.disable needs to be configured
William-XPdisable-unexposed-features-versionsetDisable certain unexposed featuresFAILisolation.tools.guestdndversionset.disable=trueisolation.tools.guestdndversionset.disable needs to be configured
William-XPrestrict-host-infoDo not send host performance information to guestsFAILtools.guestlib.enablehostinfo=falsetools.guestlib.enablehostinfo needs to be configured
William-XPdisable-autoinstallDisable tools auto installFAILisolation.tools.autoinstall.disable=trueisolation.tools.autoinstall.disable needs to be configured
William-XPdisable-loggingDisable VM loggingPASSlogging=false must be manually added to .vmxPlease refer to VM doc for further details
William-XPdisable-vix-messagesDisable VIX messages from the VMFAILisolation.tools.vixmessage.disable=trueisolation.tools.vixmessage.disable needs to be configured
William-XPlimit-log-sizeLimit VM loggingFAILlog.rotatesize=100000log.rotatesize needs to be configured
William-XPverify-vmsafe-cpumem-enableControl access to VMsafe CPU/Mem APIsMANUALvmsafe.enablePlease refer to VM doc for further details
William-XPverify-vmsafe-cpumem-agentaddressControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentAddressPlease refer to VM doc for further details
William-XPverify-vmsafe-cpumem-agentportControl access to VMsafe CPU/Mem APIsMANUALvmsafe.agentPortPlease refer to VM doc for further details
William-XPverify-network-filterControl access to virtual machines through VMsafe network APIsMANUALN/APlease refer to VM doc for further details
William-XPsecure-guest-osSecure Virtual Machines as You Would Secure Physical MachinesMANUALN/APlease refer to VM doc for further details
William-XPdisable-unnecessary-functionsDisable unnecessary or superfluous functions inside VMsMANUALN/APlease refer to VM doc for further details
William-XPuse-vm-templatesUse Templates to deploy VMs whenever possibleMANUALN/APlease refer to VM doc for further details
William-XPcontrol-resource-usagePrevent Virtual Machines from Taking Over ResourcesMANUALN/APlease refer to VM doc for further details
William-XPminimize-console-useMinimize Use of the VM ConsoleMANUALN/APlease refer to VM doc for further details

VNETWORK Report Check28 total checksPASS - 28.6 %FAIL - 7.1 %REQUIRE MANUAL VALIDATION - 64.3 %
EntityCodeDescriptionStatusParameter CheckResolution/Fix
himalaya.primp-industries.comisolate-mgmt-network-airgapEnsure that vSphere management traffic is on a restricted networkMANUALN/APlease refer to the vNetwork Doc for further details
himalaya.primp-industries.comisolate-vmotion-network-airgapEnsure VMotion Traffic is isolatedMANUALN/APlease refer to the vNetwork Doc for further details
himalaya.primp-industries.comlimit-administrator-scopeEnsure that only authorized administrators have access to virtual networking componentsMANUALN/APlease refer to the vNetwork Doc for further details
himalaya.primp-industries.comrestrict-mgmt-network-access-gatewayStrictly control access to Management networkMANUALN/APlease refer to the vNetwork Doc for further details
himalaya.primp-industries.comenable-portfastEnsure that physical switch ports are configured with Portfast if spanning tree is enabledMANUALN/APlease refer to the vNetwork Doc for further details
himalaya.primp-industries.comno-unused-dvportsEnsure that there are no unused ports on a Distributed vSwitch Port GroupPASSN/AN/A
himalaya.primp-industries.comdisable-dvportgroup-autoexpandVerify that the autoexpand option for VDS dvPortgroups is disabledFAILN/AThe following dvPortgroup w/autoExpand DPortGroup DPortGroup 1
himalaya.primp-industries.comreject-mac-change-dvportgroupEnsure the "Mac Address Change" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comreject-forged-transmit-dvportgroupEnsure the "Forged Transmits" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comreject-promiscuous-mode-dvportgroupEnsure the "Promiscuous Mode" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comreject-mac-change-dvportgroupEnsure the "Mac Address Change" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comreject-forged-transmit-dvportgroupEnsure the "Forged Transmits" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comreject-promiscuous-mode-dvportgroupEnsure the "Promiscuous Mode" policy is set to RejectPASSN/AN/A
himalaya.primp-industries.comno-native-vlan-1Ensure that port groups are not configured to value of the native VLANMANUALN/APlease refer to vNetwork doc for further details
himalaya.primp-industries.comno-vgt-vlan-4095Ensure that port groups are not configured to VLAN 4095 except for Virtual Guest Tagging (VGT)MANUALN/AVLAN ID setting on all port groups should not be set to 4095 unless VGT is required
himalaya.primp-industries.comno-reserved-vlansEnsure that port groups are not configured to VLAN values reserved by upstream physical switchesMANUALN/AVLAN ID setting on all port groups should not be set to reserved values of the physical switch
himalaya.primp-industries.comlabel-portgroupsEnsure that port groups are configured with a clear network labelMANUALN/AClearly label your portgroups along with identifer to specify functionality
himalaya.primp-industries.comlabel-vswitchesEnsure that all vSwitches have a clear network labelMANUALN/AClearly label your vSwitches
himalaya.primp-industries.comdocument-vlans-vdsEnsure that all vdSwitch VLAN ID's are fully documentedMANUALN/AClearly label your dvPortgroups
himalaya.primp-industries.comverify-vlan-idFully document all VLANs used on vSwitchesMANUALN/ADocument all VLANs on vSwitches
himalaya.primp-industries.comset-non-negotiateEnsure that the non-negotiate option is configured for trunk links between external physical switches and virtual switches in VST modeMANUALN/APlease refer to vNetwork doc for further details
himalaya.primp-industries.comverify-vlan-trunkVLAN trunk links must be connected only to physical switch ports that function as trunk linksMANUALN/ASelf explanatory
himalaya.primp-industries.comupstream-bpdu-stpVerify that for virtual machines that route or bridge traffic spanning tree protocol is enabled and BPDU guard and Portfast are disabled on the upstream physical switch portMANUALN/APlease refer to vNetwork doc for further details
himalaya.primp-industries.comdocument-pvlansEnsure that all dvSwitches PVLANS ID's are fully documentedMANUALN/AdvSwitch PVLANS require primary and secondary VLAN ID's. These need to correspond to the ID's on external PVLAN-aware upstream switches if any
himalaya.primp-industries.comrestrict-netflow-usageEnsure that VDS Netflow traffic is only being sent to authorized collector IPsMANUALN/APlease refer to vNetwork doc for further details
himalaya.primp-industries.comrestrict-portmirror-usageEnsure that VDS Port Mirror traffic is only being sent to authorized collector ports or VLANsPASSN/APlease refer to vNetwork doc for further details
himalaya.primp-industries.comlimit-network-healthcheckDisable VDS network healthcheck if you are not actively using itFAILN/ADisable VDS Network Health Check for DSwitch-1
himalaya.primp-industries.comrestrict-port-level-overridesRestrict port-level configuration overrides on VDSMANUALN/APlease refer to vNetwork doc for further details



Author: William Lam
http://www.virtuallyghetto.com
Generated using: vmwarevSphereSecurityHardeningReportCheck.pl
Support us by donating here
Primp Industries™