5.7
Table Of Contents
- VMware vCenter Configuration Manager Security Guide
- Contents
- About This Book
- Introduction to VCM Security
- Domain Infrastructure
- VCM Installation Kits
- Server Zone Security
- VCM Collector Server
- SQL Server
- Web Server
- VCM Agent Systems and Managed Machines
- VCM User Interface System
- Software Provisioning Components
- Operating System Provisioning Components
- Decommissioning
- Authentication
- Transport Layer Security
- Keys and Certificates
- How VCM Uses Certificates
- Installing Certificates for the VCM Collector
- Changing Certificates
- Delivering Initial Certificates to Agents
- Storing and Transporting Certificates
- Mark a Certificate as Authorized on Windows
- Creating Certificates Using Makecert
- Update the Collector Certificate Thumbprint in the VCM Database
- Managing the VCM UNIX Agent Certificate Store
- Supplemental References
- Index
RSAENH
DSSENH
RSABASE
DSABASE
The following modules are statically linked into some components:
OpenSSL-FIPS, OpenSSL, libssh2
n
Communication protocols; such as TCP, Telnet, X.25, IEEE 802.11, IEEE 802.16, or SIP:
Communication takes place over TCP/IP within encrypted channels using Microsoft DCOM, SSL, or
TLS (SSL v3.1+). The following protocols are used within or to construct the channels:
TCP
UDP
HTTP
FTP
TFTP
DHCP
SNMP
n
Encryption protocols; such as SSL, TSL, SSH, IPSEC, IKE, SRTP, ECCN, MD5, SHA, X.509, or PKCS
standards:
TLS (Transport Level Security, considered to be Secure Socket Layer v3.1)
SSL (Secure Socket Layer v3.0)
SSH (Secure shell)
HTTPS (HTTP over an SSL channel)
DCOM (Microsoft Distributed COM)
PKCS 1 (RSA Encryption Standard)
PKCS 7 (Cryptographic Message Format)
PKCS 10 (Certificate Signing Request)
SHA
MD5
X509 Certificates
VCM Ports
VCM uses the following ports.
Port Transport Usage
21 TCP File Transfer Protocol (FTP)
53 TCP, UDP Domain Name System (DNS)
68 UDP OS Provisioning Server bootpd/DHCP
69 UDP OS Provisioning Server TFTP
80 TCP OS Provisioning Server HTTP
88 TCP, UDP Kerberos
123 TCP Network Time Protocol (NTP)
135 TCP, UDP Remote procedure call (RPC) endpoint mapper (EPMAP)
Table 14–4. VCM Port Usage
VCM Security Guide
84
VMware, Inc.