- ESXI-06-000001 - The VMM must limit the number of concurrent sessions to ten for all accounts and/or account types by enabling lockdown mode.
- ESXI-06-000002 - The system must verify the DCUI.Access list.
- ESXI-06-000003 - The system must verify the exception users list for lockdown mode.
- ESXI-06-000004 - Remote logging for ESXi hosts must be configured.
- ESXI-06-000005 - The system must enforce the limit of three consecutive invalid logon attempts by a user.
- ESXI-06-000006 - The system must enforce the unlock timeout of 15 minutes after a user account is locked out.
- ESXI-06-000007 - The system must display the Standard Mandatory DoD Notice and Consent Banner before granting access to the system.
- ESXI-06-000008 - The SSH daemon must display the Standard Mandatory DoD Notice and Consent Banner before granting access to the system.
- ESXI-06-000030 - The system must produce audit records containing information to establish what type of events occurred.
- ESXI-06-000031 - The VMM must enforce password complexity by requiring that at least one upper-case character be used.
- ESXI-06-000034 - The system must disable the Managed Object Browser (MOB).
- ESXI-06-000035 - The VMM must be configured to disable non-essential capabilities by disabling SSH.
- ESXI-06-000036 - The system must disable ESXi Shell unless needed for diagnostics or troubleshooting.
- ESXI-06-000037 - The system must use Active Directory for local user authentication.
- ESXI-06-000039 - Active Directory ESX Admin group membership must not be used.
- ESXI-06-000040 - The system must use multifactor authentication for local access to privileged accounts.
- ESXI-06-000041 - The system must set a timeout to automatically disable idle sessions after a predetermined period.
- ESXI-06-000042 - The system must terminate shell services after a predetermined period.
- ESXI-06-000043 - The system must logout of the console UI after a predetermined period.
- ESXI-06-000045 - The system must enable a persistent log location for all locally stored logs.
- ESXI-06-000046 - The system must configure NTP time synchronization.
- ESXI-06-000048 - The system must protect the confidentiality and integrity of transmitted information by isolating vMotion traffic.
- ESXI-06-000049 - The system must protect the confidentiality and integrity of transmitted information by protecting ESXi management traffic.
- ESXI-06-000050 - The system must protect the confidentiality and integrity of transmitted information by protecting IP based management traffic.
- ESXI-06-000051 - The system must protect the confidentiality and integrity of transmitted information.
- ESXI-06-000052 - The system must protect the confidentiality and integrity of transmitted information by utilizing different TCP/IP stacks where possible.
- ESXI-06-000053 - SNMP must be configured properly.
- ESXI-06-000054 - The system must enable bidirectional CHAP authentication for iSCSI traffic.
- ESXI-06-000055 - The system must disable Inter-VM transparent page sharing.
- ESXI-06-000057 - The system must configure the firewall to block network traffic by default - Incoming
