• Security Hardening guide for VMware Aria Automation 8.x

• VMware Aria Automation

• Contrary to vRealize Automation 7.x, where IAAS components are deployed on Windows nodes, which may have OS vulnerabilities and required OS level hardening, Aria Automation 8.x appliance does not require security hardening as its pre-hardened appliance.
• Built on Photon, with services running in pods, this pre-hardened appliance ensures security. As a result of its secure, containerized design, Aria Automation 8.x does not allow custom changes directly on the appliance.
• The docker images for the containers are all pre-packaged and cannot be changed or altered.

Product security team release new versions, delivering not just new features, but also critical security patches to address known vulnerabilities. If any vulnerability reported by security scanner, we would advise users to reach out to support with vulnerability scan report to analyze and provide resolution.