Enable Strong Passwords and Configure Password Policies on ESXi
ESXi host password length and complexity rules are documented on page 90 of the vSphere Security Guide. As stated there, ESXi uses the pam_passwdqc.so plug-in, by default, to set the…
ESXi host password length and complexity rules are documented on page 90 of the vSphere Security Guide. As stated there, ESXi uses the pam_passwdqc.so plug-in, by default, to set the…
In the course of writing about VCAP-DCA objectives, I’ve written previously about working with ESXi log files. In terms of security the main ESXi log files to be aware of,…
You can configure SSL timeout periods for two types of idle connections: The Read Timeout setting applies to connections that have completed the SSL handshake process with port 443 of ESXi.…
The vSphere Security Guide makes a number of recommendations around best practices for virtual machine security. There are also the vSphere hardening guides, which can be found here. Installing Antivirus…
You can perform an unattended installation or upgrade of an ESXi host by using scripts. To do so, you need a kickstart file, which can either be included in the…
SSH is disabled by default on ESXi host. In order to connect to a host via SSH you first need to enable the SSH service. In the vSphere client you…
There are a number of objectives relating to PowerCLI on the VCAP-DCA blueprint, some of which I have covered, here and here. I have also given PowerCLI examples as an…
I came across this tip recently on Twitter – though I didn’t make a note of the source at the time. It was related to a Powershell question, though is…
This will be a short post, as I don’t want to cover ground I’ve recently written about, but as this is one of the VCAP-DCA objectives, I still wanted to…
When using esxtop or resxtop to troubleshoot a perceived networking issue, look out for dropped packets. Dropped transmit or received packets indicate that either the destination for the packets is…
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Read More