STIGQter STIGQter: STIG Summary: VMware ESXi Server 5.0 Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 27 Jan 2017: The system must ensure the vpxuser auto-password change meets policy.

DISA Rule

SV-51116r1_rule

Vulnerability Number

V-39300

Group Title

SRG-OS-99999-ESXI5

Rule Version

SRG-OS-99999-ESXI5-000145

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

From the vSphere client select "Administration >> vCenter Server Settings >> Advanced Settings". Set the "VirtualCenter.VimPasswordExpirationInDays" to 60 or less. Note that it is strongly recommended that this value not be changed from "30".

Check Contents

From the vSphere client select "Administration >> vCenter Server Settings >> Advanced Settings". Verify that the "VirtualCenter.VimPasswordExpirationInDays" keyword is set to 60 or less. The default keyword value is 30 days and it is strongly recommended that this value not be changed from "30".

If the "VirtualCenter.VimPasswordExpirationInDays" keyword setting is greater than 60, this is a finding.

Vulnerability Number

V-39300

Documentable

False

Rule Version

SRG-OS-99999-ESXI5-000145

Severity Override Guidance

From the vSphere client select "Administration >> vCenter Server Settings >> Advanced Settings". Verify that the "VirtualCenter.VimPasswordExpirationInDays" keyword is set to 60 or less. The default keyword value is 30 days and it is strongly recommended that this value not be changed from "30".

If the "VirtualCenter.VimPasswordExpirationInDays" keyword setting is greater than 60, this is a finding.

Check Content Reference

M

Target Key

2370

Comments