Dell VxRail Security Configuration Guide

PDF

Revision history

Date	Revision	Description
July 2025	15	Added information about FIPS mode.
June 2025	14	Updated the following: Removed the log-related wording Event monitoring, auditing, and logging Standard security events Enabled extended auditing Removed validated cryptographic modules Modified the verification section under Integrity. Redefined wording on Appendix B
January 2025	13	Updated for VxRail 8.0.320 with the following: Content improvements about account management. Removed PTAgent deployment and the vxpsvc_ptagent_op service account from VxRail 14G, 15G, and 16G nodes starting with VxRail 7.0.240. Removed the iDRAC account vxpscv since VxRail 8.0.320. Updated certification chain validation method since VxRail 7.0.x.
August 2024	12	Updated for VxRail 8.0.210 and content improvements.
January 2023	11	Updated for VxRail 7.0.460.
January 2023	10	Updated to include VxRail 8.0.x.
September 2022	9	Updated for branding and links.
December 2021	8	Updated the following: Events, logs, and audit rules More security architecture and configuration details
October 2020	7	Updated to include VxRail SaaS multicluster management considerations.
July 2020	6	Updated to include VxRail version 7.0.x.
March 2020	5	Added a table of ports and IP addresses that are allowed by the ESXi firewall for VxRail specific services.
December 2019	4	Updated to reflect a new requirement for customer to set mystic password in VxRail version 4.7.200 and later.
May 2019	3	Updated to include procedure to enable/disable UEFI secure boot.
January 2019	2	Updated to include VxRail version 4.7.x and additional required content.
March 2018	1	Initial release.