EMC Configuresoft ESX compliance Checker
I was purusing twitter the other day (as you do) when I came across a link shared by @Stevie_Chambers of VMware. The link was for a new free tool from EMC called Compliance Checker for VMware ESX, which as you might guess does exactly what it’s title suggests. The tool though EMC branded is actually by Configuresoft who EMC bought outright earlier this year following an existing OEM relationship.
Now some of you may be familiar with the Tripwire Config Check tool which allows you to scan your ESX servers security configuration, which in itself is a very handy tool. This new tool from EMC appears to be a little more comprehensive in that it checks your ESX servers against both the VMware VI3 Security Hardening Guidelines and the Centre for Internet Security VMware ESX Server 3.x benchmark. Test results against both are backed with an extensive knowledge base of what the check is and the actions required to rectify the issue.
Included below are some screenshots of the Main interface, the reports returned and the knowledgebase articles you recieve when you click on any item in the report.
I must admit that these compliance checkers are handy because my Linux experience only began with ESX and sometimes the areas of security being checked are ones I wouldn’t have a clue about. This is where the knowledgebase is great because it explains a little about what the check actually is as well as the actions required to rectify the issue. Very handy because it would appear that a standard build of ESX 3.5 U4 is only 73% compliant as far as this piece of software is concerned.
To get your free copy of Compliance Checker for VMware ESX, click the link, you’ll need to register but it’s a small price to pay for this handy tool.
