VMware – Page 3 – Bits and Bytes

June 30, 2023November 14, 2023

VMware Aria Operations to Monitor VMware vSphere 7.0 STIG

Important!

Alert Symptoms and Definitions can be set up in Aria Operations, but they will not truly monitor the the virtual machine accurately unless the virtual machines have already been secured!

A lot of the settings in the STIG do not exist by default and therefore cannot be monitored with confidence. It is very important to use a hardened template to save a lot of work. If virtual machines already exist, but have not been secured, you can use the following script (PowerCLI: Multiple Virtual Machines Script) to cut down on the level of effort by tackling more than one virtual machine at a time.

Overview

VMware Aria Operations (formerly vRealize Operations) can be used to monitor and alert on VMware vSphere 7.0 STIG compliance. This is helpful for when the environment has already been secured, but during troubleshooting, or other maintenance, the security standards were relaxed and never re-applied. Compliance drifts from the baseline are common and hard to detect without some sort of monitoring system. VMware Aria Operations can alert staff and remind them to button up the security compliance.

June 23, 2023November 14, 2023

MyLab: The Virtual Machine

Overview

Since I am a big fan of VMware, all of my lab will be built using VMware technology. I am using ESXi 7.0 U3 on my base host to build up a nested virtualized environment.

June 1, 2023November 9, 2023

MyLab: VMware Unified Access Gateway (UAG)

Overview

I am choosing to install VMware Unified Access Gateway (UAG) 23.09 (current at the time of writing) so that I can access my Virtual Desktop Infrastructure (VDI) without the hassle of using a Virtual Private Network (VPN).

May 30, 2023August 15, 2023

MyLab: VMware Horizon Connection Server

Overview

I am going to install VMware Horizon Connection Server 2303 (current at the time of writing) on Windows Server 2022. The only modification to the hardware is to increase the Memory to 12 GB. This will provide the connection server with ample memory for the operating system as well as the VMware Horizon Connection Server application.

May 30, 2023June 1, 2023

MyLab: VMware Workspace ONE Access

Overview

I am choosing to install VMware Workspace ONE Access 22.09.1.0 (current as of this writing) so that I have a single pane of glass to access shared applications as well as virtual desktops. Workspace ONE Access will also provide a means to standardize authentication mechanisms through on-premises or cloud directories.

May 30, 2023July 10, 2023

MyLab: VMware vSphere

Overview

I am using VMware vSphere 7.0.3 for this lab. Before starting the deployment, ensure there are forward and reverse DNS records created for the ESXi host that vCenter will be installed on, the vCenter Server appliance itself, and optionally any NTP servers. Ideally, there should be localized NTP.