Detections
Analytics
VCENTER-000021 - The use of Linux-based clients must be restricted
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
Although SSL-based encryption is used to protect communication between client components and vCenter Server or ESXi, the Linux versions of these components do not perform certificate validation. Even if the self-signed certificates are replaced on vCenter and ESXi with legitimate certificates signed by the local root certificate authority or a third party, communications with Linux clients are still vulnerable to MiTM attacks.Solution
Replace all Linux-based clients connecting to the vCenter Server with non-Linux-based clientsSee Also
http://iase.disa.mil/stigs/os/virtualization/Pages/index.aspx
Item Details
Audit Name: DISA STIG VMWare ESXi vCenter 5 STIG v1r7
References: CAT|III, CCI|CCI-000366, Group-ID|V-39559, Rule-ID|SV-51417r1_rule, STIG-ID|VCENTER-000021, Vuln-ID|V-39559
Plugin: VMware
Control ID: a3b1a23bd37adf1cc057e78a3ff84f9b1b14401e5fef5fa6b5af2fc690e3ef8c