STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to STIGs

VMware vSphere 8.0 vCenter Appliance Lookup Service Security Technical Implementation Guide

Version

V1R1

Release Date

Oct 29, 2023

SCAP Benchmark ID

VMW_vSphere_8-0_VCSA_Lookup_Svc_STIG

Total Checks

34

Tags

vmware
CAT I: 0CAT II: 34CAT III: 0

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Export CKLExport CSVExport JSONDownload STIG ZIP

Checks (34)

V-259037MEDIUMThe vCenter Lookup service must limit the number of maximum concurrent connections permitted.V-259038MEDIUMThe vCenter Lookup service cookies must have secure flag set.V-259039MEDIUMThe vCenter Lookup service must initiate session logging upon startup.V-259040MEDIUMThe vCenter Lookup service must produce log records containing sufficient information regarding event details.V-259041MEDIUMThe vCenter Lookup service logs folder permissions must be set correctly.V-259042MEDIUMThe vCenter Lookup service must limit privileges for creating or modifying hosted application shared files.V-259043MEDIUMThe vCenter Lookup service must disable stack tracing.V-259044MEDIUMThe vCenter Lookup service must be configured to use a specified IP address and port.V-259045MEDIUMThe vCenter Lookup service must be configured to limit data exposure between applications.V-259046MEDIUMThe vCenter Lookup service must be configured to fail to a known safe state if system initialization fails.V-259047MEDIUMThe vCenter Lookup service must set URIEncoding to UTF-8.V-259048MEDIUMThe vCenter Lookup service "ErrorReportValve showServerInfo" must be set to "false".V-259049MEDIUMThe vCenter Lookup service must set an inactive timeout for sessions.V-259050MEDIUMThe vCenter Lookup service must offload log records onto a different system or media from the system being logged.V-259051MEDIUMThe vCenter Lookup service must enable "STRICT_SERVLET_COMPLIANCE".V-259052MEDIUMThe vCenter Lookup service must limit the amount of time that each Transmission Control Protocol (TCP) connection is kept alive.V-259053MEDIUMThe vCenter Lookup service must limit the number of times that each Transmission Control Protocol (TCP) connection is kept alive.V-259054MEDIUMThe vCenter Lookup service must configure the "setCharacterEncodingFilter" filter.V-259055MEDIUMThe vCenter Lookup service cookies must have "http-only" flag set.V-259056MEDIUMThe vCenter Lookup service DefaultServlet must be set to "readonly" for "PUT" and "DELETE" commands.V-259057MEDIUMThe vCenter Lookup service shutdown port must be disabled.V-259058MEDIUMThe vCenter Lookup service debug parameter must be disabled.V-259059MEDIUMThe vCenter Lookup service directory listings parameter must be disabled.V-259060MEDIUMThe vCenter Lookup service deployXML attribute must be disabled.V-259061MEDIUMThe vCenter Lookup service must have Autodeploy disabled.V-259062MEDIUMThe vCenter Lookup service xpoweredBy attribute must be disabled.V-259063MEDIUMThe vCenter Lookup service example applications must be removed.V-259064MEDIUMThe vCenter Lookup service default ROOT web application must be removed.V-259065MEDIUMThe vCenter Lookup service default documentation must be removed.V-259066MEDIUMThe vCenter Lookup service files must have permissions in an out-of-the-box state.V-259067MEDIUMThe vCenter Lookup service must disable "ALLOW_BACKSLASH".V-259068MEDIUMThe vCenter Lookup service must enable "ENFORCE_ENCODING_IN_GET_WRITER".V-259069MEDIUMThe vCenter Lookup service manager webapp must be removed.V-259070MEDIUMThe vCenter Lookup service host-manager webapp must be removed.