Access Control for VMware NSX
NSX brings tremendous power. Do you have the right controls in place?
Virtualization has changed the world of IT forever. We now have tremendous agility and the ability to spin up infrastructure in seconds, but these advances have not come without challenges.
In the past, storage, compute and networking were all managed via different interfaces owned by different groups in IT. With the coming of VMware NSX, everything can be managed by a single interface. Do you really want your server team making changes to the network? Do you really want your network guys rolling out servers?
Access Control for NSX allows you fine grained control over who can do what. RBAC – Role-Based Access Control, allows audit (and security best practices) friendly Separation of Duties and Least Privilege. Strong authentication including Two Factor Authentication such as RSA SecurID and CA Authminder as well as RADIUS and TACACS+ support help ensure the right people have access to your admin console. Enhanced logging helps not only with compliance but also trouble shooting.
Access control is fine grained, with dozens of NSX specific permissions and six new NSX specific, predefined admin roles such as Network Engineer, Firewall Admin and Security Auditor. Better yet, all roles are customizable, ensuring that the tool adapts to meet your needs rather than you having to adapt to the software.