Hello Communities, i am looking for CA solution for ESX Security, eTrust Access Control, have you got experiences over there?
Regards to all.
the access control software comes in native RPM format, so installation was a breeze, rpm -Uvh <package names> that's it. The fun begins with the deployment of the rule base, the baseline rule base is available for ESX is pretty comprehensive, but may or may not suite your security standards, so you may have to run the baseline rules in a WARNING mode for a good 90-100 days before starting to enforcing them.
oh! I forgot to mention, I did turn off the esx-firewall, so I didn't have any connectivity issues to selang from remote machines, if you do have the firewall running, then you might want to open ports 8891 & 8892 to allow for remote administration of access control.
hope this helps, cheers !
- Shiva
we have successfully installed CA Access Control (8.0 SP1) on the service console. We have done some internal testing by creating, deleting VMs, suspend/resume of etc., and have found no issues so far, Access Control seems to be running fine.
Hope this helps,
\- Shiva
Hello,
Please post anything outside the normal installation. Did you have to install additional components, etc.
Best regards,
Edward
Good, i think that this product enable best security tracking into the esx.
Thanks
the access control software comes in native RPM format, so installation was a breeze, rpm -Uvh <package names> that's it. The fun begins with the deployment of the rule base, the baseline rule base is available for ESX is pretty comprehensive, but may or may not suite your security standards, so you may have to run the baseline rules in a WARNING mode for a good 90-100 days before starting to enforcing them.
oh! I forgot to mention, I did turn off the esx-firewall, so I didn't have any connectivity issues to selang from remote machines, if you do have the firewall running, then you might want to open ports 8891 & 8892 to allow for remote administration of access control.
hope this helps, cheers !
- Shiva
Hello,
Thank you for making the post. This will help others.
Best regards,
Edward