Solved

vSphere 4 - Disable Web-Based Datastore Browser

Posted on 2011-09-06
5
1,148 Views
Last Modified: 2012-05-12
Guys/Gals,

Is there any way of disabling the Web-Based Datastore Browser funtion for each ESX host server? I have gone as far as renaming the index.html but if you know the URL to Browse then you can still get prompted for login credentials.

We have already disabled the Web Access service as part of VMware hardening. We want to completely disable the home page and underlying access to Browse Datastores etc.

I need to disble this option to further enhance security.

Thanks in advance
0
Comment
Question by:15moorgate
  • 4
5 Comments
 
LVL 119
ID: 36488377
You can change the ports in the PROXY.XML file on the ESX hosts servers, to different hidden ports.

You can also comment out the Web Section, and Object Sections as per this document

It mentions Security Hardening
vSphere Hardening Document
0
 
LVL 119

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 500 total points
ID: 36488408
and if you want the shortcut, and don't want to read the document I've supplied!

VMware refer to this Security Code HCM02 on Page 27.

Instructions here to disable
http://kb.vmware.com/kb/1016039
0
 
LVL 119
ID: 36488422
or using vCLI

vmware-vim-cmd proxysvc/remove_service "/mob" "httpsWithRedirect"
0
 
LVL 119
ID: 36488426
if you are tempted to edit with WinSCP, make sure you backup the file first, and make the correct, corrections to the XML file, because it's very fussy.
0
 

Author Closing Comment

by:15moorgate
ID: 36501373
Thank you very much sir, greatly appreciated the quick response and all the links.

Out Internet suffered yesterday otherwise I would have closed then.

Regards
JEL
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Windows 2012 STD Updates Issue 15 50
Vsphere 6 Lab Setup 4 85
ESXi 5.5 Limit IOPS Live on VM 3 55
Punctured RAID5 Array on Cisco UCS server. 6 55
When we have a dead host and we lose all connections to the ESXi, and we need to find a way to move all VMs from that dead ESXi host.
When rebooting a vCenters 6.0 and try to connect using vSphere Client we get this issue "Invalid URL: The hostname could not parsed." When we get this error we need to do some changes in the vCenter advanced settings to fix the issue.
Teach the user how to configure vSphere Replication and how to protect and recover VMs Open vSphere Web Client: Verify vsphere Replication is enabled: Enable vSphere Replication for a virtual machine: Verify replicated VM is created: Recover replica…
Teach the user how to configure vSphere clusters to support the VMware FT feature Open vSphere Web Client: Verify vSphere HA is enabled: Verify netowrking for vMotion and FT Logging is in place or create it: Turn On FT for a virtual machine: Verify …

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question