You can activate the VMware SDDC Benchmark to monitor objects for violation of vSphere Security Configuration Guide, vSAN Security Configuration Guide, NSX Security Configuration Guide (SDDC only). The score cards in the VMware SDDC Benchmark warn you when compliance alerts trigger on your vCenter Server instance, NSX-V objects, NSX objects, vSAN objects, ESXi hosts, virtual machines, distributed port groups, or distributed virtual switches.

Prerequisites

You must configure the data source for which you are enabling the VMware SDDC benchmarks before you proceed. For information on how to configure a data source, see the relevant topic in the Integrating Data Sources with VMware Aria Operations chapter of the Configuring VMware Aria Operations guide.

Procedure

  1. From the left menu, click Optimize > Compliance to access the compliance page.
  2. Select a data source from the carousel on the top of the page.
  3. In the VMware SDDC Benchmarks section, click Enable under the vSphere Security Configuration Guide, vSAN Security Configuration Guide or NSX Security Configuration Guide card.
    Note: To activate the NSX Security Configuration guide, you must first install the NSX for vSphere, or the NSX-T solution. .
    The Enable Policies dialog box opens.
  4. Select the policy that you want to modify. When there are child policies, you can select a child policy and unselect a parent policy. VMware Aria Operations modifies the selected policy and activates the alert definitions associated with the current scorecard.
  5. Click Enable to confirm your selection.

Results

VMware Aria Operations starts to assess the objects based on the policy that you selected. To edit a policy, click Edit in the configuration guide pane and select a different policy.