VMware vSphere Security Cookbook

Over 75 practical recipes to help you successfully secure your vSphere environment
Preview in Mapt
Code Files

VMware vSphere Security Cookbook

Mike Greer

Over 75 practical recipes to help you successfully secure your vSphere environment
Mapt Subscription
FREE
$29.99/m after trial
eBook
$25.20
RRP $35.99
Save 29%
Print + eBook
$59.99
RRP $59.99
What do I get with a Mapt Pro subscription?
  • Unlimited access to all Packt’s 5,000+ eBooks and Videos
  • Early Access content, Progress Tracking, and Assessments
  • 1 Free eBook or Video to download and keep every month after trial
What do I get with an eBook?
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with Print & eBook?
  • Get a paperback copy of the book delivered to you
  • Download this book in EPUB, PDF, MOBI formats
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
What do I get with a Video?
  • Download this Video course in MP4 format
  • DRM FREE - read and interact with your content when you want, where you want, and how you want
  • Access this title in the Mapt reader
$0.00
$25.20
$59.99
$29.99p/m after trial
RRP $35.99
RRP $59.99
Subscription
eBook
Print + eBook
Start 30 Day Trial

Frequently bought together


VMware vSphere Security Cookbook Book Cover
VMware vSphere Security Cookbook
$ 35.99
$ 25.20
VMware vSphere 6.5 CookBook - Third Edition Book Cover
VMware vSphere 6.5 CookBook - Third Edition
$ 47.99
$ 33.60
Buy 2 for $35.00
Save $48.98
Add to Cart
Subscribe and access every Packt eBook & Video.
 
  • 5,000+ eBooks & Videos
  • 50+ New titles a month
  • 1 Free eBook/Video to keep every month
Start Free Trial
 

Book Details

ISBN 139781782170341
Paperback334 pages

Book Description

Within the IT field, security is often a low priority when it comes to building new environments. As security compliance continues to gain prominence, proper and secure product configuration becomes even more important. Applying security to a complex virtual environment can be a daunting and time-consuming endeavor. This book provides a perfect plan for step-by-step configuration of vSphere 5.5 and its associated components.

The book starts by showing you how to configure the core vSphere components of the ESXi host before covering guest virtual machine security, user management, and network and storage security. Moving ahead, you will learn specifically about the configuration of X.509 certificates utilizing the SSL Certificate Automation Tool. The book concludes by taking you through VXLAN virtual wire configuration.

Table of Contents

Chapter 1: Threat and Vulnerability Overview
Introduction
Risk overview
Hypervisor threats
Hypervisor vulnerabilities
Guest virtual machine threats
Guest virtual machine vulnerabilities
Network threats
Network vulnerabilities
Storage threats
Storage vulnerabilities
Physical threats
Physical vulnerabilities
Security concepts
Summary
Chapter 2: ESXi Host Security
Introduction
Hardening the host via Console
Hardening the host via vSphere Client
Configuring host services
Configuring the host firewall
Chapter 3: Configuring Virtual Machine Security
Introduction
Configuring administrative access options
Securing the guest OS
Guest virtual machine hardening
Configuring virtual machine resource isolation
Configuring the standard image templates
Managing snapshots
Chapter 4: Configuring User Management
Introduction
Configuring vCenter Single Sign-On
Managing Single Sign-On users with vSphere Web Client
Configuring Active Directory integration
Managing Active Directory users and groups
Assigning permissions
Assigning administrative roles
Chapter 5: Configuring Network Security
Introduction
Configuring Standard vSwitch security
Configuring the port group security
Configuring VLANs
Creating DMZ networks
Providing Distributed vSwitch security options

Configuring PVLANs
Chapter 6: Configuring Storage Security
Introduction
Configuring network isolation
Configuring iSCSI security
Configuring Header and Data Digest
Chapter 7: Configuring vShield Manager
Introduction
Installing vShield Manager OVA
Configuring vShield Manager settings
Adding vShield licensing to vCenter
Configuring SSL Security for Web Manager
Configuring Single Sign-On
Configuring user accounts and roles
Configuring services and service groups
Chapter 8: Configuring vShield App
Introduction
Installing vShield App
Configuring vShield App using the Web Console
Configuring vShield App Flow Monitoring
Configuring vShield App Firewall
Configuring vShield App SpoofGuard
Chapter 9: Configuring vShield Edge
Introduction
Installing vShield Edge
Managing appliances
Managing interfaces
Managing certificates and revocation lists
Managing firewall rules
Managing NAT rules and static routes
Managing the IPSec VPN service
Managing SSL VPN-Plus
Configuring the load-balancing service
Chapter 10: Configuring vShield Endpoint
Introduction
Installing vShield Endpoint
Configuring vShield Endpoint using an antivirus
Chapter 11: Configuring vShield Data Security
Introduction
Installing vShield Data Security
Configuring the vShield Data Security policies
Managing vShield Data Security reports
Chapter 12: Configuring vSphere Certificates
Introduction
Configuring a Windows CA template
Requesting certificates from a Windows CA
Using SSL Certificate Automation Tool 5.5
Process certificate requests
Registering the Single Sign-On certificate
Registering the Inventory Service certificate
Registering the vCenter certificate
Registering the Web Client certificate
Registering the Log Browser certificate
Registering the Update Manager certificate
Installing an ESXi host certificate
Chapter 13: Configuring vShield VXLAN Virtual Wires
Introduction
Prerequisites for configuring VXLAN virtual wires
Configuring VXLAN virtual wires
Testing VXLAN virtual wires
Configuring firewall rules for VXLAN virtual wires

What You Will Learn

  • Harden your ESXi host and guest virtual machines to reduce the vulnerabilities in your system
  • Configure vCenter networks and storage security to establish secure virtual networks between environments
  • Install and configure vShield Manager and Data Security to manage anti-malware and anitvirus policies for your virtual environments
  • Set up vShield App and Edge, including firewall and VPN configurations to help secure your networks in your environment
  • Use Sophos Anti-virus to establish a vShield Endpoint to secure your environment

Authors

Table of Contents

Chapter 1: Threat and Vulnerability Overview
Introduction
Risk overview
Hypervisor threats
Hypervisor vulnerabilities
Guest virtual machine threats
Guest virtual machine vulnerabilities
Network threats
Network vulnerabilities
Storage threats
Storage vulnerabilities
Physical threats
Physical vulnerabilities
Security concepts
Summary
Chapter 2: ESXi Host Security
Introduction
Hardening the host via Console
Hardening the host via vSphere Client
Configuring host services
Configuring the host firewall
Chapter 3: Configuring Virtual Machine Security
Introduction
Configuring administrative access options
Securing the guest OS
Guest virtual machine hardening
Configuring virtual machine resource isolation
Configuring the standard image templates
Managing snapshots
Chapter 4: Configuring User Management
Introduction
Configuring vCenter Single Sign-On
Managing Single Sign-On users with vSphere Web Client
Configuring Active Directory integration
Managing Active Directory users and groups
Assigning permissions
Assigning administrative roles
Chapter 5: Configuring Network Security
Introduction
Configuring Standard vSwitch security
Configuring the port group security
Configuring VLANs
Creating DMZ networks
Providing Distributed vSwitch security options

Configuring PVLANs
Chapter 6: Configuring Storage Security
Introduction
Configuring network isolation
Configuring iSCSI security
Configuring Header and Data Digest
Chapter 7: Configuring vShield Manager
Introduction
Installing vShield Manager OVA
Configuring vShield Manager settings
Adding vShield licensing to vCenter
Configuring SSL Security for Web Manager
Configuring Single Sign-On
Configuring user accounts and roles
Configuring services and service groups
Chapter 8: Configuring vShield App
Introduction
Installing vShield App
Configuring vShield App using the Web Console
Configuring vShield App Flow Monitoring
Configuring vShield App Firewall
Configuring vShield App SpoofGuard
Chapter 9: Configuring vShield Edge
Introduction
Installing vShield Edge
Managing appliances
Managing interfaces
Managing certificates and revocation lists
Managing firewall rules
Managing NAT rules and static routes
Managing the IPSec VPN service
Managing SSL VPN-Plus
Configuring the load-balancing service
Chapter 10: Configuring vShield Endpoint
Introduction
Installing vShield Endpoint
Configuring vShield Endpoint using an antivirus
Chapter 11: Configuring vShield Data Security
Introduction
Installing vShield Data Security
Configuring the vShield Data Security policies
Managing vShield Data Security reports
Chapter 12: Configuring vSphere Certificates
Introduction
Configuring a Windows CA template
Requesting certificates from a Windows CA
Using SSL Certificate Automation Tool 5.5
Process certificate requests
Registering the Single Sign-On certificate
Registering the Inventory Service certificate
Registering the vCenter certificate
Registering the Web Client certificate
Registering the Log Browser certificate
Registering the Update Manager certificate
Installing an ESXi host certificate
Chapter 13: Configuring vShield VXLAN Virtual Wires
Introduction
Prerequisites for configuring VXLAN virtual wires
Configuring VXLAN virtual wires
Testing VXLAN virtual wires
Configuring firewall rules for VXLAN virtual wires

Book Details

ISBN 139781782170341
Paperback334 pages
Read More

Read More Reviews

Recommended for You

Network Analysis using Wireshark Cookbook Book Cover
Network Analysis using Wireshark Cookbook
$ 29.99
$ 6.00
Troubleshooting vSphere Storage Book Cover
Troubleshooting vSphere Storage
$ 23.99
$ 16.80
VMware vSphere 5.x Datacenter Design Cookbook Book Cover
VMware vSphere 5.x Datacenter Design Cookbook
$ 32.99
$ 23.10
vSphere High Performance Cookbook Book Cover
vSphere High Performance Cookbook
$ 32.99
$ 23.10
Learning PowerCLI Book Cover
Learning PowerCLI
$ 26.99
$ 18.90
VMware vCloud Director Essentials Book Cover
VMware vCloud Director Essentials
$ 30.99
$ 21.70