STIGQter: STIG Summary: VMware vSphere 6.5 Virtual Machine Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:

System administrators must use templates to deploy virtual machines whenever possible.

DISA Rule

SV-104467r1_rule

Vulnerability Number

V-94637

Group Title

SRG-OS-000480-VMM-002000

Rule Version

VMCH-65-000042

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Create hardened virtual machine templates to use for OS deployments.

Check Contents

Ask the SA if hardened, patched templates are used for VM creation, properly configured OS deployments, including applications both dependent and non-dependent on VM-specific configurations.

If hardened, patched templates are not used for VM creation, this is a finding.

Vulnerability Number

V-94637

Documentable

False

Rule Version

VMCH-65-000042

Severity Override Guidance

Ask the SA if hardened, patched templates are used for VM creation, properly configured OS deployments, including applications both dependent and non-dependent on VM-specific configurations.

If hardened, patched templates are not used for VM creation, this is a finding.

Check Content Reference

M

Target Key

3489

Comments