Avatar of Pau Lo
Pau Lo asked on

vmware hardening script

Has anyone ever run this script:

https://communities.vmware.com/docs/DOC-11901 

And if so, is it run once (i.e. perhaps from a vcenter), or if you have 30 esxi hosts, do you have to run it 30 times, once per host?
VMwareVirtualization

Avatar of undefined
Last Comment
Luciano Patrão

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Luciano Patrão

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Andrew Hancock (VMware vExpert PRO / EE Fellow/British Beekeeper)

Sometimes we run it, but we prefer to check items manually.
ASKER
Pau Lo

When you run it hanccocka, is it one scan per host (i.e. 20 hosts = 20 scans), or one scan per vcenter (1 vcenter = 1 scan)?
ASKER
Pau Lo

BestWay - did it flag up any useful findings? What kind of issues is it scanning for in vcenter?
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
Luciano Patrão

Hi

Like I said, run against vCenter(login with vCenter IP and credentials) and then will check everything.

But you can also run per host.

off topic: Long time no "see" hanccocka.

Jail
SOLUTION
Andrew Hancock (VMware vExpert PRO / EE Fellow/British Beekeeper)

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
ASKER
Pau Lo

did it flag up any useful findings? What kind of issues is it scanning for in vcenter?
ASKER
Pau Lo

I was just after a flavour of the tests.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Luciano Patrão

Hi,

I think you need to try and check the information that will provide you and if it fits on your needs. That I think is the best option.

Like I said, can you give you information about vCenter and all objects(hosts, Network, etc) or just run per host that give you information regarding host.

But like hanccocka, I am not a big fun of these type of reports. Even I can run it time to time, I prefer check all the stuff manually.

This is mostly security. If you follow the initial links you will get more information regarding the script and the information that provides.

Jail