Solved

VMX settings recommended by Hardening Guide not in vmx files

Posted on 2014-10-24
2
313 Views
Last Modified: 2014-10-24
I have something called the "vSphere 5.5 Security Hardening Guide" and it recommends that the following values be put into the individual Virtual Machine vmx files.

My question is: Why aren't these values in my current vms files at all?  It's not that I have to check to see if the values are set as recommended, but the settings themselves don't exist in the vmx files.

Can I just add them in?  Or is the fact that they are not there at all a problem?

Thanks.

The recommended settings:

isolation.tools.diskShrink.disable = "TRUE"
isolation.tools.diskWiper.disable = "TRUE"
vmci0.unrestricted = "FALSE"
isolation.device.connectable.disable = "TRUE"
RemoteDisplay.maxConnections = "2"
log.keepOld = "10"
log.rotateSize = "100000"
tools.setInfo.sizeLimit = "1048576"
0
Comment
Question by:gateguard
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 122

Accepted Solution

by:
Andrew Hancock (VMware vExpert / EE MVE^2) earned 500 total points
ID: 40402288
They are never in the VMs by default, you need to add them, if these Risks apply to your Security and Governance at your organisations, go ahead and add them, they will cause no issues.

Make sure you shutdown the VM first, and enter them through the Advanced Settings.
0
 

Author Closing Comment

by:gateguard
ID: 40402298
Thank you, Andrew.  Much appreciated.
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Will try to explain how to use the VMware feature TAGs in the VMs and create Veeam Backup Jobs using TAGs. Since this article is too long, I will create second article for the Veeam tasks.
This article outlines why you need to choose a backup solution that protects your entire environment – including your VMware ESXi and Microsoft Hyper-V virtualization hosts – not just your virtual machines.
Teach the user how to install ESXi 5.5 and configure the management network System Requirements: ESXi Installation:  Management Network Configuration: Management Network Testing:
Teach the user how to install log collectors and how to configure ESXi 5.5 for remote logging Open console session and mount vCenter Server installer: Install vSphere Core Dump Collector: Install vSphere Syslog Collector: Open vSphere Client: Config…
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question