Configuring security can be a complex, error-prone process with many of the same risks that it seeks to mitigate.  Many organizations use Security Technical Implementation Guidelines (STIG) or Security Readiness Guide (SRG) documents, as published by Defense Information Systems Agency (DISA) as a baseline to harden their systems.  To help our customers meet their security and regulatory requirements, Dell Technologies makes an automated hardening package available to VxRail customers, at no additional charge. 

The STIG package includes an assessment index with details out each STIG control level, and a hardening guide. Customers can perform the hardening scripts or these scripts can be run by Dell Professional Services, as a service engagement. Individual SRG/STIGs that are covered by the package include:

• Application Security Development
• Application Server SRG
• VMware vSphere ESXi
•  VMware vSphere vCenter
• VMware vSphere Virtual Machine
• Apache Tomcat Application Serve
• PostgreSQL
• Network Device management

Note: For specific versions see the VxRail Security Configuration Guide link directly below

As an added benefit, the STIG package has user options to harden individual system components, individual nodes, or entire VxRail clusters. Dell Technologies is committed to generating applicable updates to the package when new STIG documents become available through DISA. 

VxRail running VxRail 7.x are compatible with the VxRail STIG hardening package requirements. See VxRail STIG Compliance Guide and automated hardening scripts for more information. A valid Dell Support login is required for access.