Could we get the option to lock down the Appliance Console? At the moment anyone who has access to the console (Vmware or otherwise) has direct access in as CMC.
The ability to enable authentication would be really useful and help approach the security compliance it seems so good at in all other areas.
I recently logged a support request to find out how we lock down the LEM appliance console so anyone accessing it would require a username and password. The reply was:
"From the VMware console, you will have access to the CMC scripted shell interface into LEM.
Unfortunately, we do not have a username or password to protect this login.
Being a scripted shell, the commands are very limited. This is not the root login, and it cannot perform very many tasks."
It’s odd that such a secure product has open access to the shell from the console, even if the commands are limited you can still achieve some destructive stuff and obtain a lot of information and data.
It’s odd that such a secure product has open access to the shell from the console, even if the commands are limited you can still achieve some destructive stuff and obtain a lot of information and data.
