UCF STIG Viewer Logo

The operating system must employ automated mechanisms to respond to unauthorized changes to organization-defined configuration settings.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-OS-000094-ESXI5-PNF SRG-OS-000094-ESXI5-PNF SRG-OS-000094-ESXI5-PNF_rule Medium
Description
Configuration settings are the configurable security-related parameters of information technology products that are part of the information system. Security-related parameters are those parameters impacting the security state of the system including parameters related to meeting other security control requirements. Responses to unauthorized changes to configuration settings can include, alerting designated organizational personnel, restoring mandatory/organization-defined configuration settings, or in the extreme case, halting affected information system processing. Permanent not a finding - vCenter is the central management facility for any/all ESXi hosts. vCenter auto-blocks access to direct vSphere modification(s). vCenter maintains image of registered servers for rollback in case of unauthorized changes.
STIG Date
VMware ESXi v5 Security Technical Implementation Guide 2013-01-15

Details

Check Text ( C-SRG-OS-000094-ESXI5-PNF_chk )
ESXi supports this requirement and cannot be configured to be out of compliance. This is a permanent not a finding.
Fix Text (F-SRG-OS-000094-ESXI5-PNF_fix)
This requirement is permanent not a finding. No fix is required.