STIGQter: STIG Summary: VMW vSphere 6.5 vCenter Server for Windows Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: VMW vSphere 6.5 vCenter Server for Windows Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:SV-216842r612237_rule
V-216842
SRG-APP-000516
VCWN-65-000020
CAT II
10
From the vSphere Web Client go to Networking >> Select a distributed switch >> Select a distributed port group >> Configure >> Settings >> Policies. Click "Edit" and under the VLAN section and change the VLAN ID to an unreserved VLAN ID and click "OK".
or
From a PowerCLI command prompt while connected to the vCenter server run the following command:
Get-VDPortgroup "portgroup name" | Set-VDVlanConfiguration -VlanId "New VLAN#"
From the vSphere Web Client go to Networking >> Select a distributed switch >> Select a distributed port group >> Configure >> Settings >> Policies.
Review the port group VLAN tags and verify they are not set to a reserved VLAN ID.
or
From a PowerCLI command prompt while connected to the vCenter server run the following command:
Get-VDPortgroup | select Name, VlanConfiguration
If any port group is configured with a reserved VLAN ID, this is a finding.
V-216842
False
VCWN-65-000020
From the vSphere Web Client go to Networking >> Select a distributed switch >> Select a distributed port group >> Configure >> Settings >> Policies.
Review the port group VLAN tags and verify they are not set to a reserved VLAN ID.
or
From a PowerCLI command prompt while connected to the vCenter server run the following command:
Get-VDPortgroup | select Name, VlanConfiguration
If any port group is configured with a reserved VLAN ID, this is a finding.
M
4030