Security Audit – User Access Audit Trail

Here are a couple of diagrams that help clarify the path of account logon and the audit trail. You want the auditor to realize that the trail start is dependent on the origin of the account. But once LDAP/AD has validated the logon, access to vCenter is traceable.   Windows domain This is the best […]

Security Audit – Sources of vCenter accounts

Explain on day one that there are multiple logon sources… this is really important as he will go away and request evidence from the domain and windows admins¬†about user creation and deletion, password policy etc… simply there are no users created in vCenter they all originate somewhere else. Even SYSTEM-DOMAIN accounts are not created in […]