Detections
Analytics

DISA STIG VMware vSphere Virtual Machine 6.5 v1r2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG VMware vSphere Virtual Machine 6.5 v1r2

Updated: 4/25/2022

Authority: Operating Systems and Applications

Plugin: VMware

Revision: 1.9

Estimated Item Count: 39

Audit Changelog

 
Revision 1.9

Apr 25, 2022

Miscellaneous
  • Metadata updated.
Revision 1.8

Apr 5, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.7

Aug 25, 2021

Miscellaneous
  • Metadata updated.
  • See also link updated.
Added
  • DISA_STIG_VMware_vSphere_Virtual_Machine_6.5_v1r2.audit from DISA VMware vSphere 6.5 Virtual Machine v1r2 STIG
Removed
  • DISA STIG VMware vSphere 6.5 Virtual Machine Security Technical Implementation Guide Version 1 Release 2
Revision 1.6

Jul 30, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.5

Jun 17, 2021

Miscellaneous
  • Metadata updated.
Revision 1.4

May 5, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.3

Sep 29, 2020

Miscellaneous
  • References updated.
Revision 1.2

Sep 1, 2020

Informational Update
  • VMCH-65-000001 - Copy operations must be disabled on the virtual machine.
  • VMCH-65-000002 - Drag and drop operations must be disabled on the virtual machine.
  • VMCH-65-000003 - GUI functionality for copy/paste operations must be disabled on the virtual machine.
  • VMCH-65-000004 - Paste operations must be disabled on the virtual machine.
  • VMCH-65-000005 - Virtual disk shrinking must be disabled on the virtual machine.
  • VMCH-65-000006 - Virtual disk erasure must be disabled on the virtual machine.
  • VMCH-65-000007 - Independent, non-persistent disks must be not be used on the virtual machine.
  • VMCH-65-000008 - HGFS file transfers must be disabled on the virtual machine.
  • VMCH-65-000009 - The unexposed feature keyword isolation.tools.ghi.autologon.disable must be set on the virtual machine.
  • VMCH-65-000012 - The unexposed feature keyword isolation.tools.ghi.launchmenu.change must be set on the virtual machine.
  • VMCH-65-000013 - The unexposed feature keyword isolation.tools.memSchedFakeSampleStats.disable must be set on the virtual machine.
  • VMCH-65-000014 - The unexposed feature keyword isolation.tools.ghi.protocolhandler.info.disable must be set on the virtual machine.
  • VMCH-65-000015 - The unexposed feature keyword isolation.ghi.host.shellAction.disable must be set on the virtual machine.
  • VMCH-65-000018 - The unexposed feature keyword isolation.tools.ghi.trayicon.disable must be set on the virtual machine.
  • VMCH-65-000019 - The unexposed feature keyword isolation.tools.unity.disable must be set on the virtual machine.
  • VMCH-65-000020 - The unexposed feature keyword isolation.tools.unityInterlockOperation.disable must be set on the virtual machine.
  • VMCH-65-000021 - The unexposed feature keyword isolation.tools.unity.push.update.disable must be set on the virtual machine.
  • VMCH-65-000022 - The unexposed feature keyword isolation.tools.unity.taskbar.disable must be set on the virtual machine.
  • VMCH-65-000023 - The unexposed feature keyword isolation.tools.unityActive.disable must be set on the virtual machine.
  • VMCH-65-000024 - The unexposed feature keyword isolation.tools.unity.windowContents.disable must be set on the virtual machine.
  • VMCH-65-000025 - The unexposed feature keyword isolation.tools.vmxDnDVersionGet.disable must be set on the virtual machine.
  • VMCH-65-000026 - The unexposed feature keyword isolation.tools.guestDnDVersionSet.disable must be set on the virtual machine.
  • VMCH-65-000028 - Unauthorized floppy devices must be disconnected on the virtual machine.
  • VMCH-65-000029 - Unauthorized CD/DVD devices must be disconnected on the virtual machine.
  • VMCH-65-000032 - Unauthorized USB devices must be disconnected on the virtual machine.
  • VMCH-65-000033 - Console connection sharing must be limited on the virtual machine.
  • VMCH-65-000034 - Console access through the VNC protocol must be disabled on the virtual machine.
  • VMCH-65-000036 - Informational messages from the virtual machine to the VMX file must be limited on the virtual machine.
  • VMCH-65-000037 - Unauthorized removal, connection and modification of devices must be prevented on the virtual machine.
  • VMCH-65-000039 - The virtual machine must not be able to obtain host information from the hypervisor.
  • VMCH-65-000040 - Shared salt values must be disabled on the virtual machine.
  • VMCH-65-000041 - Access to virtual machines through the dvfilter network APIs must be controlled.
  • VMCH-65-000047 - The virtual machine guest operating system must be locked when the last console connection is closed.
  • VMCH-65-000048 - 3D features on the virtual machine must be disabled when not required.
  • VMCH-65-000049 - Encryption must be enabled for vMotion on the virtual machine.
Miscellaneous
  • Metadata updated.
  • See also link updated.
Revision 1.1

Apr 22, 2020

Miscellaneous
  • Metadata updated.
  • References updated.