VMware Cloud Community
sboyce
Contributor
Contributor
‎10-17-2007 03:52 PM

Internal VNC functionality through host interface in ESX Server? (RemoteDisplay.vnc)

Greetings again!

When we had a GSX server years ago we could do the following and have a way into the virtual machines from the host interface via an internal VNC server by adding the following lines into each .vmx file:

RemoteDisplay.vnc.enabled = TRUE

RemoteDisplay.vnc.port = 5901

RemoteDisplay.vnc.password = somepassword

Apparently this does not work on ESX Server 3?

Is there a way to hack this functionality in with a configuration change/3rd party utility/etc.?

Basically our students need a way into and to control their individual virtual machines through the host's interface without having access to the entire VI console. RDP is accessible through each guest's interface but I need the students to be able to do this through the host's interface.

Any help or advice would be greatly appreciated Smiley Happy

Humbly,

Sean

Tags (3)
Reply
0 Kudos
4 Replies
Dave_Mishchenko
Immortal
Immortal
‎10-17-2007 04:01 PM

Hi Sean, you could use the web interface for this and then be able to access the remote console via the web interface. You can also create a URL that just opens the remote console. If you select a VM in the web interface, you'll see the shortcut Generate Remote Console URL on the right side of the page.

Reply
0 Kudos
piuhapofuhpaosf
Contributor
Contributor
‎02-20-2009 08:49 AM

Just an FYI - we use this exact functionality (the RemoteDisplay.vnc.enabled, port, and password config options) to connect to our VM's that are running on ESX hosts. It works fine for us.

Reply
0 Kudos
maishsk
Expert
Expert
‎02-22-2009 09:43 AM

By default this is blocked on by the firewall on ESX 3, but on ESX 3i it is open by default

In order to allow this you would have to open a firewall rule on your ESX 3 Host.

I wrote a blog post about this subject with a follow-up

Maish

Systems Administrator & Virtualization Architect

Maish Saidel-Keesing • @maishsk • http://technodrone.blogspot.com • VMTN Moderator • vExpert • Co-author of VMware vSphere Design
Reply
0 Kudos
Texiwill
Leadership
Leadership
‎02-23-2009 06:36 AM

Hello,

Also remember that the VNC password is limited in character count and most modern systems can brute force the password pretty quickly..... If you have the MD5 string then well, it is even easier and faster. In addition, VNC usage bypasses all Roles and Permissions controls setup within your virtual infrastructure.


Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
Reply
0 Kudos