The vSphere Security Configuration Guide provides prescriptive guidance about deploying and operating VMware vSphere in a secure manner.

VMware Aria Operations 8.x

VMware SDDC Benchmark based on 'VMware vSphere 7 Security Configuration Guide Update 3' and 'VMware vSphere 8 Security Configuration Guide' is an automated way of performing Compliance assessment of your vSphere environments. While there are many technical controls that can be automatically assessed by simply enabling the compliance pack, there are a few controls that cannot be assessed automatically and shall need manual processes in place. 

Attached to this article you will find vSphere controls based on 'VMware vSphere 7 Security Configuration Guide Update 3' or 'VMware vSphere 8 Security Configuration Guide'.

Each file contains details of the conditions implemented as part of VMware Aria Operations (on-prem) and allows automated compliance assessment.  This helps you to proactively detect compliance problems in VMware vSphere environments.
Included are a subset of conditions extracted from 'VMware vSphere 7 Security Configuration Guide Update 3' or 'VMware vSphere 8 Security Configuration Guide'.  These conditions are excluded from automated assessment.  This list of controls can be used to perform manual checks on your SDDC environments.

NOTE: 'VMware vSphere 7 Security Configuration Guide Update 3' and 'VMware vSphere 8 Security Configuration Guide' is available in the attachment section below.

• For more information, about the vSphere Security Configuration Guide, see the topic, Understanding the vSphere Security Configuration Guide.
• For more information about the VMware Aria Operations (on-prem) (formerly known as vRealize Operations) compliance benchmarks, see the topic, Compliance Benchmarks