Whitepaper: vSphere 4.0 Security Hardening Guide

vmware logo

In January VMware released the first public draft of its vSphere 4.0 Hardening Guide.
Last week the document finally reached the GA status and it’s available for download.

The 110-pages must-read document all aspects of a virtual infrastructure, including:

  • The virtualization hosts (both ESX and ESXi)
  • Configuration of the virtual machine container (NOT hardening of the
    guest OS or any applications running within)
  • Configuration of the virtual networking infrastructure, including the
    management and storage networks as well as the virtual switch (but NOT
    security of the virtual machine’s network)

  • vCenter Server, its database, and client components
  • VMware Update Manager (included because the regular update and
    patching of the ESX/ESXi hosts and the virtual machine containers is
    essential to maintaining the security of the environment)