You can activate the VMware Cloud Foundation benchmarks to audit the compliance of the objects in the VMware Cloud Foundation stack. The products currently included for assessment are ESXi, SDDC Manager, vCenter Server, vSAN and NSX.

Prerequisites

You must configure the VMware Cloud Foundation data source before you proceed. For information, see the topic, VMware Cloud Foundation in the Configuring VMware Aria Operations guide.

Before you can enable the VMware Aria Operations CSA Compliance Pack for VMware Cloud Foundation, you must install the integration after downloading the .PAK file from Marketplace. For more information, see the VMware Aria Operations for Integrations Documentation.

Procedure

1. From the left menu, click Operations > Compliance to access the compliance page.
2. Select VMware Cloud Foundation from the carousel on the top of the page.
3. Do the following:
   1. To enable VCF Compliance based on the VCF Audit Guides, in the VCF Benchmarks section, click Enable in the VCF Compliance based on the VCF Audit Guides card.
   2. To enable VMware Aria Operations CSA Compliance Pack for VMware Cloud Foundation, in the Regulatory Benchmarks section, click Enable in the VCF Compliance based on the Cloud Security Alliance card.
4. Select the policy that you want to modify. When there are child policies, you can select a child policy and unselect a parent policy. VMware Aria Operations modifies the selected policy and activates the alert definitions associated with the current scorecard.
5. Click Enable to confirm your selection.

Results

VMware Aria Operations starts to assess the objects based on the policy that you selected. To edit a policy, click Edit in the configuration guide pane and select a different policy.