STIGQter: STIG Summary: VMware vSphere 6.7 Photon OS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021: STIGQter: STIG Summary: VMware vSphere 6.7 Photon OS Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021:SV-239132r675204_rule
V-239132
SRG-OS-000355-GPOS-00143
PHTN-67-000061
CAT II
10
Open /etc/ntp.conf with a text editor and set its contents to the following:
tinker panic 0
restrict default kod nomodify notrap nopeer
restrict 127.0.0.1
restrict -6 ::1
driftfile /var/lib/ntp/drift/ntp.drift
server <site-specific-time-source-IP>
At the command line, execute the following commands:
# chkconfig ntpd on
# systemctl start ntp
OR
Navigate to https://<hostname>:5480 to access the VAMI.
Authenticate and navigate to "Time".
Click "Edit" in the top right and configure at least one appropriate NTP server.
Click "OK".
At the command line, execute the following command:
# grep -E '^\s*(server|peer|multicastclient)' /etc/ntp.conf
Confirm the servers and peers or multicastclient (as applicable) are local or an authoritative U.S. DoD source.
If no lines are returned or a non-local/non-authoritative time server is used, this is a finding.
OR
Navigate to https://<hostname>:5480 to access the Virtual Appliance Management Interface (VAMI).
Authenticate and navigate to "Time".
If no appropriate time server is specified, this is a finding.
V-239132
False
PHTN-67-000061
At the command line, execute the following command:
# grep -E '^\s*(server|peer|multicastclient)' /etc/ntp.conf
Confirm the servers and peers or multicastclient (as applicable) are local or an authoritative U.S. DoD source.
If no lines are returned or a non-local/non-authoritative time server is used, this is a finding.
OR
Navigate to https://<hostname>:5480 to access the Virtual Appliance Management Interface (VAMI).
Authenticate and navigate to "Time".
If no appropriate time server is specified, this is a finding.
M
5323