The Web datastore browser enables viewing of all the datastores associated with the vSphere deployment, including all folders and files, such as VM files. This functionality is controlled by the organization-specific, user permissions on vCenter Server.
NOTE: Please review the benchmark to ensure target compliance.
If the Web datastore browser is enabled and required for normal, daily operational tasks, no fix is required.
Disable the Web datastore browser:
Determine the location of the vpxd.cfg file on the Windows host.
Edit the file and locate the
Ensure the following element is set
Restart the vCenter Service to ensure the config file change(s) are in effect.
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system VMware.