Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

vSphere 4 - Disable Web-Based Datastore Browser

Posted on 2011-09-06
5
1,159 Views
Last Modified: 2012-05-12
Guys/Gals,

Is there any way of disabling the Web-Based Datastore Browser funtion for each ESX host server? I have gone as far as renaming the index.html but if you know the URL to Browse then you can still get prompted for login credentials.

We have already disabled the Web Access service as part of VMware hardening. We want to completely disable the home page and underlying access to Browse Datastores etc.

I need to disble this option to further enhance security.

Thanks in advance
0
Comment
Question by:15moorgate
  • 4
5 Comments
 
LVL 119
ID: 36488377
You can change the ports in the PROXY.XML file on the ESX hosts servers, to different hidden ports.

You can also comment out the Web Section, and Object Sections as per this document

It mentions Security Hardening
vSphere Hardening Document
0
 
LVL 119

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 500 total points
ID: 36488408
and if you want the shortcut, and don't want to read the document I've supplied!

VMware refer to this Security Code HCM02 on Page 27.

Instructions here to disable
http://kb.vmware.com/kb/1016039
0
 
LVL 119
ID: 36488422
or using vCLI

vmware-vim-cmd proxysvc/remove_service "/mob" "httpsWithRedirect"
0
 
LVL 119
ID: 36488426
if you are tempted to edit with WinSCP, make sure you backup the file first, and make the correct, corrections to the XML file, because it's very fussy.
0
 

Author Closing Comment

by:15moorgate
ID: 36501373
Thank you very much sir, greatly appreciated the quick response and all the links.

Out Internet suffered yesterday otherwise I would have closed then.

Regards
JEL
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Last article we focus in how to VMware: How to create and use VMs TAGs – Part 1 so before follow this article and perform the next tasks, you should read the first article how to create the TAG before using them in Veeam Backup Jobs.
This article outlines why you need to choose a backup solution that protects your entire environment – including your VMware ESXi and Microsoft Hyper-V virtualization hosts – not just your virtual machines.
Teach the user how to use vSphere Update Manager to update the VMware Tools and virtual machine hardware version Open vSphere Client: Review manual processes for updating VMware Tools and virtual hardware versions: Create a new baseline group in vSp…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question