VMware Compliance Checker for vSphere: A Valuable Tool for vAdmins
The first version of the new VMware Compliance Checker for vSphere tool is now available for download, offering a simple yet powerful solution to help vAdmins ensure their ESX and ESXi hosts are properly configured and secure. This tool is a much-needed addition to the vSphere toolkit, providing a convenient way to scan your environment for compliance with VMware’s vSphere hardening guidelines.
Easy to Use and Install
Downloading and installing the VMware Compliance Checker for vSphere is a straightforward process that takes only a few minutes. Once installed, the tool is easy to use, with a simple click-next interface that guides you through the installation process. The tool is Windows-only at this point, but given its Java-based architecture, it’s likely that other operating systems will be supported in future versions.
Scanning for Compliance
To run a compliance scan, simply start up the VMware Compliance Checker for vSphere and point it towards either an ESX/ESXi host or your vCenter installation. The tool will then run for a while, analyzing your environment and identifying any potential compliance issues. Once the scan is complete, you’ll be presented with a comprehensive HTML-based report highlighting all the shortcomings in your compliance.
Reporting and Tracking Compliance
One of the most valuable aspects of the VMware Compliance Checker for vSphere is its ability to provide detailed reports on your environment’s compliance level. This allows you to track your compliance over time, identifying areas that need improvement and ensuring that your environment remains secure. Additionally, the tool provides a nice feature for saving and printing reports, making it easy to share your findings with others or use them as documentation for internal audits.
Comparison to Other Tools
While the VMware Compliance Checker for vSphere is a valuable tool, it’s not the only game in town. William Lam’s Perl-based vSphere Security Hardening Report Script offers more extensive checks and some additional advantages. For instance, the script is operating system agnostic and can be set up to perform automated scans using cron jobs. However, the VMware tool is missing the ability to schedule scans, which is something that would be a valuable addition in future versions.
Conclusion
The first version of the VMware Compliance Checker for vSphere is a great start towards providing vAdmins with a simple and powerful tool for ensuring their environment’s compliance. While it may not offer as extensive checks as other tools, it provides an easy-to-use interface and comprehensive reporting features that make it a valuable addition to any vSphere toolkit. We hope that VMware will add the ability to schedule scans in future versions, making this tool an even more essential resource for vAdmins.