STIGQter STIGQter: STIG Summary: VMware ESXi Server 5.0 Security Technical Implementation Guide Version: 1 Release: 10 Benchmark Date: 27 Jan 2017: Only authorized administrators must have access to virtual networking components.

DISA Rule

SV-51222r1_rule

Vulnerability Number

V-39364

Group Title

ESXI5-VMNET

Rule Version

ESXI5-VMNET-000007

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

vSphere permissions to specific port groups must be granted only to individuals who need it. From the vSphere Client/vCenter as a user with full Administrator Role rights to the Inventory object to be checked:
(1) Select "[Inventory Object]>> Permissions". Assign users with the appropriate Role to the all Inventory object(s).

Check Contents

vSphere permissions to specific port groups must be granted only to individuals who need it. From the vSphere Client/vCenter as a user with full Administrator Role rights to the Inventory object to be checked:
Select "[Inventory Object]>> Permissions". Verify that users assigned to the selected Inventory object have the appropriate role.

If any user assigned to the selected Inventory object have an inappropriate role, this is a finding.

Vulnerability Number

V-39364

Documentable

False

Rule Version

ESXI5-VMNET-000007

Severity Override Guidance

vSphere permissions to specific port groups must be granted only to individuals who need it. From the vSphere Client/vCenter as a user with full Administrator Role rights to the Inventory object to be checked:
Select "[Inventory Object]>> Permissions". Verify that users assigned to the selected Inventory object have the appropriate role.

If any user assigned to the selected Inventory object have an inappropriate role, this is a finding.

Check Content Reference

M

Target Key

2370

Comments