Hello,
I believe it is as long as you have the proper controls around the management stack. Outside of that the hypervisor really is a black box and does protect itself. All those items I referenced are very good to read and determine this for yourself. Your security folks will need to do some reading as well to understand what is going on under the covers.
Even though you have tenants on their own vSwitch, you do not need to actually use their own pNIC, that is a fallacy but depends on your understanding of virtualization security, how the hypervisor works, how vSwitches work, and how you can use 3 distinct virtual networking control planes to segregate various components. Hypervisors are hybrid devices, they are compute, network, storage devices. as such they have 3-4 built in networks that need to be protected: Management, Storage, vMotion, FT, and workloads. The workloads can be split into tenants.
To determine if multi-tenancy is allowed, you really need to look at the whole picture, it is more important to have a good architecture. However, if your security team does not trust the hypervisor then your security team needs to get educated before you can even start on that architecture.
Best regards,
Edward L. Haletky
VMware Communities User Moderator, VMware vExpert 2009, 2010, 2011,2012,2013,2014
Author of the books 'VMWare ESX and ESXi in the Enterprise: Planning Deployment Virtualization Servers', Copyright 2011 Pearson Education. 'VMware vSphere and Virtual Infrastructure Security: Securing the Virtual Environment', Copyright 2009 Pearson Education.
Virtualization and Cloud Security Analyst: The Virtualization Practice, LLC -- vSphere Upgrade Saga -- Virtualization Security Round Table Podcast
--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
