Reply to Message

View discussion in a popup

Replying to:
lorengordon
Enthusiast
Enthusiast

Ok, thanks! I also submitted feedback on the KB asking for that clarification.

We also have been using the VMware Hardened Appliance Operations Guide. It would be nice if that guide referenced the KB, as well, or even the vSphere Hardening Guide. Or perhaps the recommendations from that guide could be incorporated into this guide. Another note on that, I'm not sure who's responsible for maintaining/updating the hardened appliance guide, but we found that it has some incomplete guidance (at least for the VCSA) in the section, "Secure Shell, Administrative Accounts, and Console Access." Adding a local account to the 'wheel' group is *not* sufficient to allow ssh access; the account also needs to be a member of the 'shellaccess' group.

http://www.vmware.com/files/pdf/techpaper/VMWare-Hardened-Appliance-Operations-Guide.pdf

-Loren

Reply
0 Kudos