STIGQter STIGQter: STIG Summary: VMware vSphere 6.5 vCenter Server for Windows Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020: The vCenter Server for Windows must limit the maximum number of failed login attempts to three.

DISA Rule

SV-104623r1_rule

Vulnerability Number

V-94793

Group Title

SRG-APP-000345

Rule Version

VCWN-65-000045

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

From the vSphere Web Client go to Administration >> Single Sign-On >> Configuration >> Policies >> Lockout Policy. Click "Edit". Set the Maximum number of failed login attempts to "3" and click "OK".

Check Contents

From the vSphere Web Client go to Administration >> Single Sign-On >> Configuration >> Policies >> Lockout Policy.

View the values for the lockout policies.

The following lockout policy should be set at follows:
Maximum number of failed login attempts: 3

If this account lockout policy is not configured as stated, this is a finding.

Vulnerability Number

V-94793

Documentable

False

Rule Version

VCWN-65-000045

Severity Override Guidance

From the vSphere Web Client go to Administration >> Single Sign-On >> Configuration >> Policies >> Lockout Policy.

View the values for the lockout policies.

The following lockout policy should be set at follows:
Maximum number of failed login attempts: 3

If this account lockout policy is not configured as stated, this is a finding.

Check Content Reference

M

Target Key

3487

Comments