Comments on: Heads up! vCloud Automation Center remote privilege vulnerability https://magander.se/heads-up-vcloud-automation-center-remote-privilege-vulnerability/ Thu, 18 Aug 2016 10:30:54 +0000 hourly 1 https://wordpress.org/?v=6.9.4 By: magander3 https://magander.se/heads-up-vcloud-automation-center-remote-privilege-vulnerability/#comment-575 Mon, 05 Jan 2015 18:06:27 +0000 http://magander.se/?p=4719#comment-575 In reply to Pat.

Yes, RDP and SSH or vCD are your options now unfortunately

]]> By: Pat https://magander.se/heads-up-vcloud-automation-center-remote-privilege-vulnerability/#comment-574 Mon, 05 Jan 2015 18:01:45 +0000 http://magander.se/?p=4719#comment-574 In reply to magander3.

Hi Magnus, my understanding is that 6.2 is not affected because vmrc is disabled by default. The patch for earlier versions simply disables the feature. Reading the docs it appears that the remote console entitlement is available for vApps in vCloud director. This ties in with vmware KB which states vRA using vCD is not affected because it uses console proxy service. I can’t currently see anyway of providing users with vSphere console access via vRA 6.2. Only ssh and rdp.

]]> By: magander3 https://magander.se/heads-up-vcloud-automation-center-remote-privilege-vulnerability/#comment-573 Mon, 05 Jan 2015 16:44:47 +0000 http://magander.se/?p=4719#comment-573 In reply to Pat.

Hi,
vRA 6.2 is not affected by the security issue

//Magnus

]]> By: Pat https://magander.se/heads-up-vcloud-automation-center-remote-privilege-vulnerability/#comment-572 Mon, 05 Jan 2015 15:41:15 +0000 http://magander.se/?p=4719#comment-572 Hi, I am doing a POC using vRA 6.2. What are the alternative options at present to provide end users with console access to vSphere VMs? Is the connect using remote console only available when connecting via vCD?

]]>