VCENTER-000006 - The Web datastore browser must be disabled, unless required for normal day-to-day operations.

Details

The Web datastore browser enables viewing of all the datastores associated with the vSphere deployment, including all folders and files, such as VM files. This functionality is controlled by the organization-specific, user permissions on vCenter Server.



NOTE: Please review the benchmark to ensure target compliance.


Solution

If the Web datastore browser is enabled and required for normal, daily operational tasks, no fix is required.

Disable the Web datastore browser:
Determine the location of the vpxd.cfg file on the Windows host.
Edit the file and locate the ... element.
Ensure the following element is set false

Restart the vCenter Service to ensure the config file change(s) are in effect.


Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system VMware.


References


Source