Solved

vSphere 4 - Disable Web-Based Datastore Browser

Posted on 2011-09-06
5
1,139 Views
Last Modified: 2012-05-12
Guys/Gals,

Is there any way of disabling the Web-Based Datastore Browser funtion for each ESX host server? I have gone as far as renaming the index.html but if you know the URL to Browse then you can still get prompted for login credentials.

We have already disabled the Web Access service as part of VMware hardening. We want to completely disable the home page and underlying access to Browse Datastores etc.

I need to disble this option to further enhance security.

Thanks in advance
0
Comment
Question by:15moorgate
  • 4
5 Comments
 
LVL 118
ID: 36488377
You can change the ports in the PROXY.XML file on the ESX hosts servers, to different hidden ports.

You can also comment out the Web Section, and Object Sections as per this document

It mentions Security Hardening
vSphere Hardening Document
0
 
LVL 118

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE) earned 500 total points
ID: 36488408
and if you want the shortcut, and don't want to read the document I've supplied!

VMware refer to this Security Code HCM02 on Page 27.

Instructions here to disable
http://kb.vmware.com/kb/1016039
0
 
LVL 118
ID: 36488422
or using vCLI

vmware-vim-cmd proxysvc/remove_service "/mob" "httpsWithRedirect"
0
 
LVL 118
ID: 36488426
if you are tempted to edit with WinSCP, make sure you backup the file first, and make the correct, corrections to the XML file, because it's very fussy.
0
 

Author Closing Comment

by:15moorgate
ID: 36501373
Thank you very much sir, greatly appreciated the quick response and all the links.

Out Internet suffered yesterday otherwise I would have closed then.

Regards
JEL
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Will try to explain how to use the VMware feature TAGs in the VMs and create Veeam Backup Jobs using TAGs. Since this article is too long, I will create second article for the Veeam tasks.
In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
Teach the user how to install vSphere Update Manager  Console to Windows system:  Install vSphere Update Manager: Configure vSphere Update Manager plug-in in vSphere Client: Verify vSphere Update Manager settings in vSphere Client:
This Micro Tutorial walks you through using a remote console to access a server and install ESXi 5.1. This example is showing remote access and installation using a Dell server. The hypervisor is the very first component of your virtual infrastructu…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now