A public draft of the vSphere Security Hardening Guide for vSphere 5.1 was released a few weeks back by my colleague Mike Foley. Since then I have been asked by several people if I had a chance to update my vSphere Security Hardening Report Script. The answer was unfortunately no due to other projects I had been working on and this script as well as others are maintained outside of my normal day job. I finally found some time this past weekend to go through the 5.1 revision of the hardening guide and make the necessary updates to my script which includes a few additional checks.

The script continues to provide backwards compatibility to previous releases of the vSphere Security Hardening Guide for vSphere 5.0, 4.1 and 4.0. Maintaining this compatibility is actually quite a challenge due to small minor changes in the hardening guide from previous versions, but I am please to say the latest 5.1 draft has now been implemented.

Disclaimer: This script is not officially supported by VMware, please test this in a development environment before using on production systems.  

Here is a sample output for the Security Hardening Report for a subset of my vSphere 5.1 home lab environment using "profile1" check:

For more details about the security hardening script, please refer to the documentation here.

If you have any feedback/questions on the vSphere Security Hardening Guide itself, make sure you to leave your comments and questions here. If you have any feedback/questions regarding the script, please join the vSphere Security Hardening Report VMTN Group for further discussions.

10 thoughts on “vSphere Security Hardening Report Script Updated for vSphere 5.1

  1. Great work William!!
    Please note folks, that this script is based on a pre-release version of the 5.1 hardening guide. The RC version is coming REAL SOON followed a few weeks later by the GA version. As William is want to do, I’m sure the script above will be updated very shortly after the GA of the 5.1 HG. 🙂

  2. It’s really appreciable message for everybody thanks for sharing this information.When looking for a locksmith in Atlanta, GA, you want to find somebody who is professional and affordable. Our Reliable Locksmith in Atlanta understands that we need to be mobile so that we will respond quickly to any situation. If you are looking for an Atlanta locksmith 24 hour, call us now at (404) 445-0200 and the closest technician we will dispatched to your locations immediately.

    locksmith atlanta
    locksmith in atlanta
    atlanta locksmith
    locksmith services in atlanta
    car locksmith atlanta

  3. Hi William,

    Is the script based on the public draft or the final release of the hardening guide?


  4. Hi William,

    Really nice work you have done

    Just wanted to check is this script will work on 5.5 ?

    I was able to run the script without any error but unfortunately HTML file didn’t show the any content

    Awaiting for your reply

    Amit Vyas

  5. Nice work,But how to use this perl script.pre-requisite and what is required to execute it.

    Thanks waiting for the earliest reply.

Thanks for the comment!