ESXI-67-000005 - The ESXi host must enforce the limit of three consecutive invalid logon attempts by a user.

Gavin M. Dennis

22 April 2022 15:03

Details

By limiting the number of failed logon attempts, the risk of unauthorized access via user password guessing, otherwise known as brute forcing, is reduced. Once the configured number of attempts is reached, the account is locked by the ESXi host.

Solution

From the vSphere Client, select the ESXi host and go to Configure >> System >> Advanced System Settings.

Click 'Edit', select the 'Security.AccountLockFailures' value, and configure it to '3'.

or

From a PowerCLI command prompt while connected to the ESXi host, run the following command:

Get-VMHost | Get-AdvancedSetting -Name Security.AccountLockFailures | Set-AdvancedSetting -Value 3

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_VMW_vSphere_6-7_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system VMware.

References

800-53|AC-7a.
CAT|II
CCI|CCI-000044
Rule-ID|SV-239262r674715_rule
STIG-ID|ESXI-67-000005
STIG-Legacy|SV-104043
STIG-Legacy|V-93957
Vuln-ID|V-239262

Source

Tenable.com/audits

PS. Before you go.

Request a quote to protect your organisation from cyber attacks and breaches.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.

Articles in this section