Dell EMC VxRack System SDDC User manual
Dell EMC VxRack System SDDC
Version 5.1.3
Security Configuration Guide
REV 01
Copyright ©2018 Dell Inc. or its subsidiaries. All rights reserved.
Published August 2018
Dell believes the information in this publication is accurate as of its publication date. The information is subject to change without notice.
THE INFORMATION IN THIS PUBLICATION IS PROVIDED “AS-IS.“ DELL MAKES NO REPRESENTATIONS OR WARRANTIES OF ANY KIND
WITH RESPECT TO THE INFORMATION IN THIS PUBLICATION, AND SPECIFICALLY DISCLAIMS IMPLIED WARRANTIES OF
MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. USE, COPYING, AND DISTRIBUTION OF ANY DELL SOFTWARE DESCRIBED
IN THIS PUBLICATION REQUIRES AN APPLICABLE SOFTWARE LICENSE.
Dell, EMC, and other trademarks are trademarks of Dell Inc. or its subsidiaries. Other trademarks may be the property of their respective owners.
Published in the USA.
Dell EMC
Hopkinton, Massachusetts 01748-9103
1-508-435-1000 In North America 1-866-464-7381
www.DellEMC.com
2Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
Introduction 5
About this guide........................................................................................... 6
Revision history............................................................................................ 6
Support........................................................................................................ 6
Registering for online support......................................................... 6
Where to go for support resources.................................................. 7
Reporting vulnerabilities............................................................................... 7
Security quick reference 9
Deployment models.....................................................................................10
Product and Subsystem Security 11
Authentication.............................................................................................12
iDRAC security............................................................................................12
Network security.........................................................................................12
Chapter 1
Chapter 2
Chapter 3
CONTENTS
Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide 3
CONTENTS
4Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
CHAPTER 1
Introduction
lAbout this guide................................................................................................... 6
lRevision history....................................................................................................6
lSupport................................................................................................................6
lReporting vulnerabilities....................................................................................... 7
Introduction 5
About this guide
This guide provides an overview of security configuration settings for the Dell EMC
VxRack SDDC system, and best practices for using those settings to ensure secure
operation of the product.
This guide provides information for system administrators and other users responsible
for configuring and maintaining the security for a VxRack SDDC cluster. This
document is designed for people familiar with:
lDell EMC systems and software
lVMware virtualization products
lData center appliances and infrastructure
Revision history
The following table lists revision history for the VxRack SDDC Security Configuration
Guide.
Table 1 Revision History
Revision number Date Description
01 August 27, 2018 Initial release.
Support
Create an Online Support account to get access to support and product resources for
your VxRack SDDC system.
If you already have an account, register your VxRack SDDC system to access the
available resources.
For convenience, you can link your Online Support account with VxRack SDDC and
access support resources without having to log in separately.
Note
If you plan to set up ESRS, your Online Support account must be linked to VxRack
SDDC under the same party ID or the deployment will fail. Your system must also be in
an installed state in the Install Base.
Registering for online support
Create an Online Support account to access support resources.
After you register, you can:
lRegister your system
lObtain product license files and software updates
lDownload product documentation
lBrowse the community and support information
lLink your support account for access to resources from within VxManager
Introduction
6Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
Procedure
1. Point your Web browser to support.emc.com.
2. Click Register here.
3. Fill in the required information.
Support will send you a confirmation email, typically within 48 hours.
Where to go for support resources
Access support resources for your VxRack SDDC system by doing any of the
following:
lIn VMware SDDC Manager, click Support.
lPoint your Web browser to support.emc.com.
Note
You must provide the iDRAC root passwords and the Administrator password for the
Support VM for all Dell EMC support engagements.
Reporting vulnerabilities
Dell EMC takes reports of potential vulnerabilities in our products very seriously. For
the latest on how to report a security issue to Dell EMC, please see the Product
Security Response Center on EMC.com.
Introduction
Where to go for support resources 7
Introduction
8Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
Deployment models
The VxRack SDDC system comes in multiple configurations with different capacities
and components.
Before deployment
When building the VxRack SDDC system, the factory performs the following actions:
lInstall all components in the chassis.
lInstall the system in the rack.
lComplete basic configuration to provide a platform for final deployment at the
customer site.
During deployment
The VxRack SDDC system is installed by trained Dell EMC or partner personnel. When
deploying the appliance, technicians perform the following actions:
lConnect power.
lConnect the system to the customer network environment.
lComplete VMware Cloud Foundation Bring-up process.
lRegister the system with the ESRS system.
The VxRack SDDC deployment process makes no security-related assumptions about
the customer environment. Customers are expected to provide suitable power and
data connections, as well as physical security to protect the system components.
The VxRack SDDC interface does not provide security-specific configuration options
or support additional configurations. All system components are deployed using the
best practices that are defined in the security configuration guides for each
component. The interface enforces an optimal environment for correct operation of
the appliance components.
After deployment
The VxRack SDDC system contains externally accessible interfaces for use by data
protection and management clients. Customers should take care to apply appropriate
access restrictions to prevent unauthorized use. All forms of access should be
regularly monitored and audited, as dictated by customer security requirements.
Security quick reference
10 Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
CHAPTER 3
Product and Subsystem Security
lAuthentication.................................................................................................... 12
liDRAC security................................................................................................... 12
lNetwork security................................................................................................ 12
Product and Subsystem Security 11
Authentication
This section describes default settings and configuration options for how users or
processes authenticate to the VxRack SDDC system.
"Mystic" account password
The VxManager sets the VxRack SDDC "mystic" account password by default.
Dell EMC strongly recommends that you change this password and maintain it
securely.
Support VM administrator password
Dell EMC recommends that you change the administrator password for the Support
VM.
The
Dell EMC VxRack System SDDC (version 5.1.3 or later) Administration Guide
provides
instructions for changing these passwords.
iDRAC security
This section describes best practices for the iDRAC interfaces used by the VxRack
SDDC system.
VxRack SDDC iDRAC ports are configured during manufacturing and installation. The
default iDRAC user name and password are provided on the system information tag.
We highly recommend that you change the iDRAC root password once the system is
deployed.
The
Dell EMC VxRack System SDDC (version 5.1.3 or later) Administration Guide
provides
instructions for changing this password.
Network security
This section describes best practices for the network interfaces used by the VxRack
SDDC system.
VxRack SDDC networking is configured during installation and the first-run process.
Consult with your sales representative or partner to prepare your switches and
network before installation.
Product and Subsystem Security
12 Dell EMC VxRack System SDDC 5.1.3 Security Configuration Guide
Table of contents
Other Dell EMC Rack & Stand manuals
Popular Rack & Stand manuals by other brands
Hama
Hama 00096007 manual
Fujitsu
Fujitsu CMA Series Installation
Rowan Astronomy
Rowan Astronomy AZ75 quick start guide
Hollywood
Hollywood Sport Rider HR1000 quick start guide
CHIEF
CHIEF Truss/Pole Static Mount TPS-2000 Series installation instructions
AmazonBasics
AmazonBasics Essentials B07QJCT72W installation instructions
Audio Technica
Audio Technica GENUINE ACCESSORIES AT8662 quick start guide
Technimount System
Technimount System BRACKET PRO 121-GR3 user guide
Vicon
Vicon X517 Installation & operation manual
Elkay
Elkay MPW200 instructions
VCM
VCM 17807 TDH 3 instruction manual
FRIEDHELM LOH
FRIEDHELM LOH RITTAL VX IT 5301.325 Assembly instructions