fereinsights.blogg.se - Dell vmware 6.0

Added new ciphers in the sshd_config file

Updated 6.0 STIG VIB for the version 1 release 2 STIG.

**Please note this is not based on a DISA STIG as a 6.5 STIG has not been released**

Added 6.5 STIG VIB to the downloads section.

Also updated package to replace 6.0 version and root disabled or root enabled for the same version if you are switching between them.

Updated 6.5 STIG VIB to resolve issue with it not being applicable to 6.7 in VUM.

Note - This VIB is based on draft STIG content! It is recommended to use this over the previous 6.5-7 STIG VIB.

Removed /etc/issue and /etc/pam.d/passwd files from VIB as those settings can be set via advanced settings now.

Updated Ciphers and MACs for newer version of OpenSSH Removed protocol 2 setting as it is deprecated.

See the updated Overview and Installation guide included in the download.

Removed /etc/vmware/welcome file from VIB since it can be configured via the UI or PowerCLI now with issue.Updated sshd_config file to meet the ESXi 7.0 Draft STIG which is also now the default config in 7.0 U2 with the exception of permitting root user logins.No need to create complex shell scripts that run each time ESXi boots to re-apply settings.No need to manually replace and copy files directly on each ESXi host in your environment.The ability to use VUM to quickly check if all ESXi hosts have the STIG VIB installed and therefore are also in compliance.The ability to use vSphere Update Manager ('VUM') to quickly deploy the VIB to ESXi hosts (you cannot do this with a customer created VIB).The use of the VMware-signed STIG VIB provides customers the following benefits: These files cannot be modified at a community supported acceptance level. The need for a VMware-signed VIB is due to the system level files that are to be replaced. In certain cases, it may require complex scripting, or even development of an in-house VIB that would not be officially digitally signed by VMware (and therefore would not be deployed as a normal patch would). These include the fact that installation is time consuming and must be done manually on the ESXi hosts. This VIB has been developed to help customers rapidly implement the more challenging aspects of the vSphere STIG. The DoD Security Technical Implementation Guide ('STIG') ESXi VIB is a Fling that provides a custom VMware-signed ESXi vSphere Installation Bundle ('VIB') to assist in remediating Defense Information Systems Agency STIG controls for ESXi.