STIGQter: STIG Summary: VMware vSphere 6.7 Virtual Machine Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021: STIGQter: STIG Summary: VMware vSphere 6.7 Virtual Machine Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021:SV-239352r679605_rule
V-239352
SRG-OS-000480-VMM-002000
VMCH-67-000021
CAT II
10
Develop a policy prohibiting the use of a VM console for performing management services. This policy should include procedures for the use of SSH and Terminal Management services for VM management. Where SSH and Terminal Management services prove insufficient to troubleshoot a VM, access to the VM console may be temporarily granted.
Remote management services, such as terminal services and SSH, must be used to interact with virtual machines. VM console access should only be granted when remote management services are unavailable or insufficient to perform necessary management tasks.
Ask the SA if a VM console is used to perform VM management tasks, other than for troubleshooting VM issues.
If a VM console is used to perform VM management tasks, other than for troubleshooting VM issues, this is a finding.
If SSH and/or terminal management services are exclusively used to perform management tasks, this is not a finding.
V-239352
False
VMCH-67-000021
Remote management services, such as terminal services and SSH, must be used to interact with virtual machines. VM console access should only be granted when remote management services are unavailable or insufficient to perform necessary management tasks.
Ask the SA if a VM console is used to perform VM management tasks, other than for troubleshooting VM issues.
If a VM console is used to perform VM management tasks, other than for troubleshooting VM issues, this is a finding.
If SSH and/or terminal management services are exclusively used to perform management tasks, this is not a finding.
M
5327