new1234.jpg

Archive

Posts Tagged ‘VMware’

VMware: Kritieke kwetsbaarheid in VMware vCenter-server actief aangevallen

June 7th, 2021 No comments

Aanvallers maken actief misbruik van een kritieke kwetsbaarheid in VMware vCenter Server en VMware Cloud Foundation waardoor het mogelijk is om kwetsbare systemen op afstand over te nemen. Op 25 mei kwam VMware met beveiligingsupdates, maar er zijn nog altijd ongepatchte servers. Die zijn een aantrekkelijk doelwit voor aanvallers, aldus het Cybersecurity and Infrastructure Security Agency (CISA) van het Amerikaanse ministerie van Homeland Security.

De kwetsbaarheid, CVE-2021-21985, is op een schaal van 1 tot en met 10 wat betreft de impact met een 9,8 beoordeeld. VCenter is een oplossing voor het beheer van virtual machines en gevirtualiseerde servers en wordt standaard geleverd met de vSAN-plug-in. Deze plug-in controleert invoer van gebruikers onvoldoende, waardoor een aanvaller met toegang tot de vCenter-server op afstand willekeurige code kan uitvoeren. Het maakt niet uit of er van vSAN gebruik wordt gemaakt of niet.

Hoewel beveiligingsupdates om het probleem te verhelpen sinds 25 mei beschikbaar zijn maken aanvallers inmiddels actief misbruik van de kwetsbaarheid om systemen over te nemen, waarschuwt het CISA. Ook securitybedrijf Bad Packets meldt dat aanvallers op grote schaal naar kwetsbare servers zoeken. Een exploit om misbruik van het beveiligingslek te maken is inmiddels op internet te vinden. Organisaties wordt dan ook aangeraden om de patches te installeren en wanneer dat niet mogelijk is een workaround toe te passen.

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

Categories: VMware Tags: , , , ,

VMware: The Dell ESXi 7.0 ISO is now available

April 2nd, 2020 No comments

vSphere 7 is finally out!

You can download the Dell Server ISO image by clicking the screenshot below:

Download: VMware

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

VMware: NLVMUG UserCon 2019

February 12th, 2019 No comments

In 2019 verhuist de NLVMUG UserCon naar een nieuwe locatie: De Fabrique te Utrecht! Het event vindt plaats op donderdag 21 maart 2019.

De locatie mag dan nieuw zijn, wij gaan er als vanouds tegenaan om een geweldig event neer te zetten. De trend van de afgelopen jaren wordt voortgezet. Verwacht dus nog meer community en VMware sessies. Denk ook aan use-cases van onze sponsors met situaties die je zelf zou kunnen meemaken op de werkvloer.


Call for papers

Zelf bijdragen aan de content van het event? Dat kan! Onze “call for papers” is nu online. Ga naar PaperCall om deel te nemen en jouw presentatie(idee) in te dienen.


Inschrijven

Inschrijven voor de NLVMUG UserCon 2019 doe je hier.

 

    

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

Categories: VMware Tags: , ,

VMware: Yeehaa I’m vExpert 2018

March 15th, 2018 No comments

I am very honored and very pleased to be awarded the VMware vExpert Award for the ninth time in a row! Thanks to VMware for continuing this award. Also congratulations to all new vExperts 2018 and again welcome to earlier vExperts!

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

Categories: VMware Tags: , , ,

VMware: VMSA-2017-0006 VMware ESXi, Workstation and Fusion updates address critical and moderate security issues

March 30th, 2017 No comments

VMware has released security patches for the VM-Escape Security Bug. http://www.vmware.com/security/advisories/VMSA-2017-0006.html

Products affected is ESXi, Workstation, Player and Fusion.

VMware ESXi 6.5  

Downloads:https://my.vmware.com/group/vmware/patch

Documentation:  http://kb.vmware.com/kb/2149573
VMware ESXi 6.0 patch on top of ESXi 6.0 U3

Downloads: https://my.vmware.com/group/vmware/patch

Documentation:   http://kb.vmware.com/kb/2149569

VMware ESXi 6.0 patch on top of ESXi 6.0 U2  

Downloads:  https://my.vmware.com/web/vmware/details?productId=491&downloadGroup=ESXI60U2

(Click on the above link and scroll down to ESXi600-201703003 Offline Bundle)

Documentation:  http://kb.vmware.com/kb/2149673

VMware ESXi 6.0 patch on top of ESXi 6.0 U1  

Downloads:  https://my.vmware.com/web/vmware/details?productId=491&downloadGroup=ESXI60U1B

(Click on the above link and scroll down to ESXi600-201703002 Offline Bundle)

Documentation:  http://kb.vmware.com/kb/2149672

ESXi 5.5 

Downloads: https://my.vmware.com/group/vmware/patch

Documentation:   http://kb.vmware.com/kb/2149577

VMware Workstation Pro 12.5.5 

Downloads and Documentation:

https://www.vmware.com/go/downloadworkstation

https://www.vmware.com/support/pubs/ws_pubs.html

VMware Workstation Player 12.5.5

Downloads and Documentation:

https://www.vmware.com/go/downloadplayer

https://www.vmware.com/support/pubs/player_pubs.html

VMware Fusion Pro / Fusion 8.5.6

Downloads and Documentation:

https://www.vmware.com/go/downloadfusion

https://www.vmware.com/support/pubs/fusion_pubs.html

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

Categories: VMware Tags: , ,

VMware: Yeah, vExpert 2017!

February 16th, 2017 No comments

This year’s vExperts 2017 were announced! Check it out. I’ve been honored again (2010, 2011, 2012, 2013, 2014, 2015, 2016) as a vExpert this year. Great thanks to VMware and vExpert team behind the program!

It’s Correy Romero who announced the news on the VMTN blog. This year over 700 vExperts (exactly 754 vExperts this year) were named. Here is the full list of lucky people for 2017 – vExperts 2017.

VMW-LOGO-vEXPERT-2017-k

vExpert program allows greater recognition between your coworkers, clients and in the overall professional life.

 

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

Categories: VMware Tags: ,

VMware: VMware Remote MKS has stopped working

November 3rd, 2016 No comments

Running vSphere Client 6.0.0 build 2741530. Sometimes when opening the remote console, during boot virtual machine the resolution is swapping from small to a bigger resolution.

App crash with details:

vmware-remotemks.exe version 8.0.0.33578

 

Solution

Update the VMware vSphere cliënt, in my case to version: 6.0.0-3562874

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

VMware: What’s new in vSphere 6.5

October 18th, 2016 No comments

 

vCenter Server Appliance

  • Enhanced vCenter Install, Upgrade, Patch: Streamlined user experience while deploying, upgrading and patching for vCenter Server. Support for CLI template-based vCenter Server lifecycle management.
  • vCenter Server Appliance Migration Tool: Single-step migration process for existing Windows vCenter Server to latest release of vCenter Server Appliance. Assumes the identity of the source Windows vCenter (UUID, IP, OS Name). Support for both CLI and UI methods. Migrations for both embedded and external topologies. VMware Update manager is now included in the migration process.
  • Sphere Update Manager for vCenter Server Appliance: Fully embedded and integrated vSphere Update Manager experience for vCenter Server Appliance – with no Windows dependencies!
  • Enhanced Auto Deploy: New capabilities such as UI support, improved performance and scale, backup and restore of rules for Auto Deploy.
  • Improvements in Host Profiles: Streamlined user experience and host profile management with several new capabilities including DRS integration, parallel host remediation, and improved audit quality compliance results.
  • VMware Tools Lifecycle Management: Simplified and scalable approach for install and upgrade of VMware Tools, reboot less upgrade for Linux Tools, OSP upgrades, enhanced version and status reporting via API and UI.
  • vSphere Automation API: A new REST based API, SDKs and Multi-Platform CLI (DCLI) is now available to provide simplified VM management and automation of the VCSA based configuration and services.
  • Platform Service Controller High Availability: The PSC HA feature include zero configuration high availability with automatic vCenter failover to another PSC within a site. New PSC Site Management client side tools for viewing your topology and viewing PSC HA status. Available for both Windows and Appliance PSCs.
  • vCenter High Availability: Protect mission critical vCenter deployments with a native high availability solution that will not only protect against host and hardware failures, but also against vCenter application failures. The vCenter HA solution provides automated failover from active to passive vCenter with expected RTO < 5 mins. Uses synchronous replication so there is no data loss and operates in an Active-Passive configuration with a Witness. Requires 2 network adapters, one for the “public” network and one for the “private” network. And is only be available to the vCenter Appliance.
  • vCenter Server Appliance and Database Management: The new 6.5 Appliance Management Interface includes usage monitoring of the embedded vCenter Postgres database by data type and utilization trends, and sends database usage alerts directly into the vSphere web client. Monitor appliance CPU, Memory, and networking utilization trends for more targeted troubleshooting. Send syslog data to remote hosts.
  • Native vCenter Server backup and restore: Back up the vCenter Server Appliance and Platform Services Controller in three simple steps in the Appliance Management Interface using industry-standard protocols like HTTP(S), SCP or FTP(S). The file-based backup (encryption optional) will include the embedded Postgres database, vCenter inventory, and all configuration files required to recover vCenter. Restore the appliance from the new vCenter Server 6.5 installer.

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn

VMware: Disable HotPlug capability for virtual machines with PowerCLI

January 16th, 2016 3 comments

Last week I had to change VMX files for 500 XenDesktop machines because the users where able to eject removable devices

To mass disable HotPlug capability by editing the .vmx file via PowerCLI I used the following script:

$key = "devices.hotplug"
$value = "false"
get-cluster "CL02.XD" | get-VM -Name 000-CXD* | foreach {
  $vm = Get-View $_.Id
  $vmConfigSpec = New-Object VMware.Vim.VirtualMachineConfigSpec
  $vmConfigSpec.extraconfig += New-Object VMware.Vim.optionvalue
  $vmConfigSpec.extraconfig[0].Key=$key
  $vmConfigSpec.extraconfig[0].Value=$value
  $vm.ReconfigVM($vmConfigSpec)
}


Optional (manual) options:

You can disable HotPlug capability using the vSphere Client or by editing the .vmx file.
Note: You can disable HotPlug capability for PCI devices such as e1000 or vmxnet3 NICs.
To disable HotPlug capability using the vSphere Client:

  1. Connect to the ESXi/ESX host or vCenter Server using the vSphere Client.
  2. Power off the virtual machine.
  3. Right-click the virtual machine and click Edit Settings.
  4. Click the Options tab.
  5. Click General > Configuration Parameters > Add Row.
  6. Insert a new row with the name devices.hotplug and a value of false.
  7. Power on the virtual machine.

To disable HotPlug capability using the vSphere Web Client:

  1. From a web browser, connect to the vSphere Web Client.
  2. Log in with Administrator credentials.
  3. Navigate to the virtual machine you want to modify.
  4. Right-click the virtual machine and select Edit Settings.
  5. Click the VM Options tab.
  6. Click Advanced > Edit Configuration > Add Row.
  7. Insert a new row with the name devices.hotplug and a value of false.
  8. Power on the virtual machine.

To disable HotPlug capability by editing the .vmx file:

  1. Power off the virtual machine.
  2. Access the ESXi/ESX service console using an SSH client.
  3. Open the virtual machine configuration file (.vmx) in a text editor. The default location is:
    /vmfs/volumes/datastore_name/vm_name/vm_name.vmx
  4. Add the line:
    devices.hotplug = "false"
    Note: This setting does not interfere with HotPlug CPU/memory.
  5. Save and close the file.
  6. Power on the virtual machine.
    More information:

VMware

sanderdaems

Sander Daems is founder and author of this blog and working as a Lead (Sr.) Consultant by UNICA ICT Solutions. Sander has over 15 years experience in IT, primary focus: virtualization and modern worksplace.

More Posts - Website

Follow Me:
TwitterLinkedIn