We help IT Professionals succeed at work.
Get Started
Securing vSphere Datastores/Vmdks from Remote access
Hi there Experts,
I have recently joined vmware’s platform but my main concern now is the security of the VMs from a Remote Users Group.
From permissions perspective I have blocked the browse datastore, Low level file operations and I have also confirmed that take snapshot option and export to ovf file are disabled for the group of remote users.
Q1) Do I miss any other permission that I should block?
Q2) If a remote user uses his credentials to access the datastores via 3rd party software such
as WinSCP, will be able to eventually browse and copy the datastores??
Q3) Is there any auditing/logging while performing operations to the datastores/vmdks?
(such as for example download operations or export operations)
Q4) Assuming that someone has eventually downloaded the vmdks and
since a windows admin password does not actually protect the access to the files,
is there any native/built-in encryption to the vmdk files?
Thanks,
I have recently joined vmware’s platform but my main concern now is the security of the VMs from a Remote Users Group.
From permissions perspective I have blocked the browse datastore, Low level file operations and I have also confirmed that take snapshot option and export to ovf file are disabled for the group of remote users.
Q1) Do I miss any other permission that I should block?
Q2) If a remote user uses his credentials to access the datastores via 3rd party software such
as WinSCP, will be able to eventually browse and copy the datastores??
Q3) Is there any auditing/logging while performing operations to the datastores/vmdks?
(such as for example download operations or export operations)
Q4) Assuming that someone has eventually downloaded the vmdks and
since a windows admin password does not actually protect the access to the files,
is there any native/built-in encryption to the vmdk files?
Thanks,
Why Experts Exchange?
Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.
Jim Murphy
Programmer at Smart IT Solutions
When asked, what has been your best career decision?
Deciding to stick with EE.
Mohamed Asif
Technical Department Head
Being involved with EE helped me to grow personally and professionally.
Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question
Connect with Certified Experts to gain insight and support on specific technology challenges including:
- Troubleshooting
- Research
- Professional Opinions
Did You Know?
We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE