Recent updates
-
Application Profiling
Updated onArticleApplication Profiler is a standalone tool that helps you determine where in the file system or registry an application is storing its user settings. The output from Application Profiler is a configuration file (template) which can be used to preserve and roam application settings for your end users. Optionally, you can record a default set of application settings and apply and/or enforce these defaults for your users based on a variety of conditions.
Application Profiler analyzes where an application stores its file and registry configuration. The analysis results in an optimized Flex configuration file, which you can edit in the Application Profiler or use directly in the Dynamic Environment Manager environment.
With Application Profiler, you can also create application-specific predefined settings, with which you can set the initial configuration state of applications. Save the Flex configuration file with predefined settings to export the current application configuration state.
Application Profiler is licensed as a VMware Dynamic Environment Manager component and is available in both DEM Standard and DEM Enterprise.
Knowledge Base HOL-2451-01-DWS Module 4 - Dynamic Environment Manager (45 minutes) Beginner
-
Explore Next-Gen Firewall Capabilities with NSX Gateway Firewall
Updated onArticleNSX Gateway Firewall is a security feature of VMware NSX that provides network-level Firewall capabilities for virtualized environments. It allows organizations to enforce security policies at the edge of their virtual networks, helping to protect against external threats and unauthorized access. It is integrated with other security features of NSX, such as microsegmentation and intrusion detection and prevention, to provide a comprehensive security solution for virtualized environments.
Edited for Discovery (Pathfinder) TDX-2462-02-NET NSX Gateway Firewall
-
Micro-segmentation with NSX Intelligence Rule Recommendations
Updated onArticleMicro-segmentation with NSX Intelligence is a security technique that allows for the division of a network secure segments. This is achieved by creating logical boundaries within the network, which can then be assigned different security policies. This allows for granular control over the flow of traffic within the network, making it more difficult for attackers to move laterally and access sensitive data.
One key feature of NSX Intelligence is its ability to provide recommendations for micro-segmentation policies based on network traffic data. This is done by analyzing traffic patterns and identifying potential security risks, such as unsecured communication between devices or the presence of malicious traffic. The system then uses this information to recommend specific micro-segmentation policies that can be implemented to mitigate those risks.
This feature is useful because it automates the process of configuring micro-segmentation policies, which can be a time-consuming and complex task. It also allows for more dynamic and adaptive security, as the system can automatically adjust policies as network traffic and security risks change. Additionally, it can help organizations to identify possible vulnerabilities on their network and allow them to take actions to minimize the risk of data breaches.
In this section we will generate an automatic recommendation of DFW rules for East-West traffic for ACME application Virtual Machines.
acme-web02 --> acme-app02 --> acme-db02
Edited for Discovery (Pathfinder) TDX-2462-02-NET NSX Intelligence Rule Recommendations
-
Cryptowall protection with NSX Security MITRE ATT&CK Framework
Updated onArticleThe next step is to inspect the NSX Network Detection and Response (NDR) campaign. NSX NDR identifies threat movements in your network perimeter (North-South) as well as attacks, that move laterally (East-West). It provides you with a visualization of the entire attack, including a complete campaign blueprint and detailed threat timeline.
A Campaign is correlated set of incidents that affect one or more workload over a period. It provides the visibility of entire cycle with the list of compromised hosts and threats detected along with their timeline of attacks.
Let’s start the investigation of the attack from the NDR console, to review the threat events.
Edited for Discovery (Pathfinder) TDX-2462-02-NET NSX Security MITRE ATT&CK Framework
-
Application and Network Traffic Visibility with NSX Intelligence & NTA
Updated onArticleThe console is accessed through a supported supported web browser Chrome. Login to NSX Manager:
- Click on NSX 4.1 Chrome shortcut on the Desktop. Shortcut will open the URL to NSX: https://nsx-mgr.vmwdp.com/
- The login credentials are located under Credentials.txt file on the Desktop. Refer to the section titled NSX Manager.
Edited for Discovery (Pathfinder) TDX-2462-02-NET NSX Intelligence & NTA
-
Protect East-West Lateral Security with NSX Intelligence and NSX NDR
Updated onArticleIn this section, we will learn how NSX Intelligence and NSX NDR provide a comprehensive approach to East-West lateral security.
Edited for Discovery (Pathfinder) TDX-2462-02-NET NSX Intelligence and NSX NDR
-
Accessing this Lab
Updated onArticleThis section talks about how to login and the pre-requisites before starting the Lab
Edited for Discovery (Pathfinder) TDX-2462-02-NET Before You Begin
-
DWPG Overview
Updated onArticleProvisioned in the VMware Workspace ONE Cloud, a Digital Workspace Proving Ground (DWPG) is a regionally located, fully integrated, non-expiring, enterprise, digital workspace environment.
With enabling our partners top of mind, the DWPG was developed so that an active partner organization, and VMware staff, could have its own dedicated, production-level, digital workspace environment to be used exclusively for demos and testing.
A DWPG contains the following services:
- Workspace ONE Intelligence
-
Workspace ONE UEM
- Workspace ONE Assist
- Workspace ONE Freestyle Orchestrator
- Workspace ONE Access
- Workspace ONE Hub Services
- Horizon Cloud Service - next-gen
- VMware Identity Services
Edited for Discovery (Pathfinder) Digital Workspace Proving Ground
-
VMware App Volumes on Horizon Cloud on Microsoft Azure -next gen
Updated onArticle- Log in to TestDrive Portal
- Launch the Horizon Cloud on Microsoft Azure Administration Console from the Digital Workspace section of My Products in the portal
- Log in to the console
- Explore App Volumes from within the Applications menu
- Explore App Volumes assignments from within the Assignments menu
- Log into a Windows 10 Multi-Session App Volumes enabled virtual desktop.
- Launch the Paint.NET App Volumes Application
- Launch the Notepad ++ App Volumes Application
Knowledge Base Digital Workspace Horizon Cloud
-
Conclusión
Updated onArticleProporcione un resumen de lo que el usuario acaba de aprender en el módulo.
- Necesita un resumen. No informe de esto como un problema.
Knowledge Base HOL-2451-01-DWS Módulo 6: Aplicaciones a pedido de App Volumes (30 minutos) Principiante