[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

lockdown mode / DCIU

Posted on 2013-12-03
5
Medium Priority
?
521 Views
Last Modified: 2013-12-05
can enforcing lockdown mode /disabling DCUI create any support type issues? I.e. are there any cases whereby you may wish to perform troubleshooting directly on the host as opposed to using vCenter?

And secondly is it an easy thing to enable/disable - or quite a time consuming excercise? I was thinking it could be enabled (ld mode) by default and temporarily disabled if theres a genuine business case/then re-enabled after the work is done?
0
Comment
Question by:pma111
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 123

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 2000 total points
ID: 39692709
1. Yes it can cause issues, if you visit the console, to perform additional diagnostics, and the console is locked, you will not be able to access the server.

A bit like if there is no keyboard attached!

2. It is easy to enable and disable from vSphere vCenter Server.

VMware KB: Enabling or disabling Lockdown mode on an ESXi host
0
 
LVL 3

Author Comment

by:pma111
ID: 39692718
So is that the appraoch you follow, enable LD mode by default, disable as and when neccesary?
0
 
LVL 123
ID: 39692724
If you believe you may have a security risk in your computer room or datacentre.

We see it enable, when you have servers in a shared datacentre location with many other companies servers.
0
 
LVL 3

Author Comment

by:pma111
ID: 39692736
But it would also save the impact if someone gained unauthorised access to the server room, i.e. break in? i,e,.defence in depth strategy, or are you pretty much toast if someone breaks in anyway?
0
 
LVL 123
ID: 39692741
If someone broke in, they could remove the server!

and deal with access to the server later. (easily!)
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If we need to check who deleted a Virtual Machine from our vCenter. Looking this task in logs can be painful and spend lot of time, so the best way to check this is in the vCenter DB. Just connect to vCenter DB(default DB should be VCDB and using…
In this article, I will show you HOW TO: Perform a Physical to Virtual (P2V) Conversion the easy way from a computer backup (image).
Teach the user how to install log collectors and how to configure ESXi 5.5 for remote logging Open console session and mount vCenter Server installer: Install vSphere Core Dump Collector: Install vSphere Syslog Collector: Open vSphere Client: Config…
In this video tutorial I show you the main steps to install and configure  a VMware ESXi6.0 server. The video has my comments as text on the screen and you can pause anytime when needed. Hope this will be helpful. Verify that your hardware and BIO…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question