alfweb.com

Today vmware relased the Vsphere compliance checker, as from the help of the tool “The Compliance Checker runs an assessment on ESX/ESXi hosts managed by vCenter. The assessment is based on a predefined subset of 26 of the vSphere Security Hardening Guide rules and is run against the first 5 ESX/ESXi hosts found on the target vCenter. The assessment results for each host include the rules, the rule descriptions, and the success or failure of each rule.”

The  installation process is definitely simple, all you have to do is to go here, download it and launch the setup, at the end of it all you have to do is launch the tool

Basically what it will happen is that will be run an assessment against your vcenter/vpshere architecture that will match your actual configurations with what suggested by the  vSphere Security Hardening Guide.

The output produced is a nice web page where you may find what’s “wrong” and what’s “good” in your environment and decide how to proceed along.

The tool come along with another nice tool “VMware Compliance Checker for PCI”  that (from the vmware website) “Check the compliance of your IT infrastructure against specific standards and best practices that are applicable for the environment. The Compliance Checker for PCI DSS v1.2 is a free, downloadable, fully-functional product for checking compliance of your environment to help you ensure that it remains secure and compliant.”