Just got this today from our Center for Policy Compliance guys.  🙂

CP&C is pleased to announce the availability of the Defense Information Systems Agency (DISA) VMware vSphere 5.0 compliance toolkit that is aligned to version 1 and release 3 (V1R3). The benchmark availability announcement was made on 30-Sep-2013 and we churned it pretty quickly! You can download the package using CCW tool and begin to use it.

If you use our vCM product you should download the new toolkit for this update.  As stated above it aligns with V1R3 of the STIG.

3 thoughts on “ESXi 5 STIG – vCM Compliance Toolkit for v1r3 Released

  1. Hi Eric,

    I don’t currently have vCM running, but would definitely consider it. Do you know how thorough the toolkit is? I was a little distraught by the vSphere Compliance Checker when I used it — it didn’t seem to run very many checks.

    By the way, I don’t know if you’ve heard differently, but when I spoke to an IA guy from DISA it sounded like they wouldn’t release a revision until next January at the earliest (it wasn’t even on their schedule). :-\

  2. Hi Dave,

    Send me a message to my vmware account (ehammersley). I want to put you in touch with Brian and Jonathan on this.

    On the STIG schedule, yes, that sounds about right. The government shutdown and budget crisis changed their schedule though the end of the year, which caused some things important to us to get shifted. That being said I’m not certain that the January timeframe is in stone. I think it’s an estimation at the moment. I’ll post more here as I hear it.

Comments are closed.