Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
 
Search the VMware Knowledge Base (KB)   View by Article ID
 

Hardening vCloud Networking and Security 5.1.x virtual appliances (2034358)

Purpose

You can access vShield Manager and other vCloud Networking and Security components by using a web-based user interface, the Command-line interface, and the REST API. vCloud Networking and Security 5.1.x includes default login credentials for each of these access options. After installation of each virtual machine, it is a good idea to harden access by changing the default login credentials for your environment. This article details how to harden these vCloud Networking and Security components.

Resolution

To harden your vCloud Networking and Security components, you must access each component. How to access these components is detailed in each of these sections:
vShield Manager User Interface
 
You access the vShield Manager user interface by opening a web browser window and navigating to the IP address of the vShield Manager’s management port.
 
The default user account, admin, has global access to the vShield Manager. After initial login, you should change the default password of the admin user account. You can change the password of the admin account to harden access to your vShield Manager. To change the default password:
  1. Log in to the vShield Manager user interface.
  2. Click Change Password on the top right corner of the window.
  3. In the Old password field, type default (the current password).
  4. Type a new password of your choice.
  5. Confirm the password by typing it a second time in the Retype Password field.
  6. Click OK to save your changes.
 
Command-line Interface
 
You can access vShield Manager, vShield App, and vShield Edge virtual appliances by using a command-line interface via the vSphere Client console session. To access the vShield Endpoint virtual appliance, refer to the instructions from your anti-virus solution provider.

Note: You cannot access the vShield Data Security virtual machine by using the command-line interface. 
 
Each virtual appliance uses the same default username (admin) and password (default) combination as the vShield Manager user interface. Entering Enabled mode also uses the password default. To change the password on the Command Line Interface, follow the directions in the vShield Command Line Interface Reference.
 
 
REST API Requests
 
All REST API requests require authentication with vShield Manager. Using Base 64 encoding, you identify a username-password combination. Unless these are changed, you can use the following basic authorization, where YWRtaW46ZGVmYXVsdA== is the Base 64 encoding of the default credentials admin:default.

You must use a vShield Manager user interface account with privileged access to perform requests.  To change the default password you must l
ogin to the vShield REST API and access the URL. Depending on the browser you are using, the steps vary. For more information, see  Accessing and using the vCloud Networking and Security 5.1.x REST  API (2034410).

See Also

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

  • 5 Ratings

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
  • 5 Ratings
Actions
KB: