ESXI5-VMNET-000024 - Access to the management network must be strictly controlled through a network jump box.

Information

Based upon an organization's risk assessment, jump boxes that run vSphere Client and other management clients (e.g., VSphere Management Assistant) must be configured. The management network must be isolated in order to prevent access by internal and external, unauthorized personnel.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Implement and document a management network jump box solution.
Note that this check refers to an entity outside the scope of the ESXi server system.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_ESXi5_Server_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Group-ID|V-39401, Rule-ID|SV-250565r798694_rule, STIG-ID|ESXI5-VMNET-000024, STIG-Legacy|SV-51259, STIG-Legacy|V-39401, Vuln-ID|V-250565

Plugin: VMware

Control ID: 8e80501eaf53df06916906df41006014d4fc0083f652efa83f77d42f12a2cc62