Securing the guest OS
A VM and its associated guest operating system should be treated the same as a physical machine with regard to a proper security stance given the location and the function of the machine. Standard practices including up-to-date antivirus, anti-malware, and firewall rules should all be implemented. The lack of standard security practices often makes VMs an easy target for attackers. However, vShield Endpoint provides the offloading of traditional AV from each guest OS to a specialized appliance that runs at the hypervisor level. We'll configure vShield Endpoint and a third-party AV solution in a later chapter.
Getting ready
The ease with which a VM can be provisioned by a user leads to the use of a said machine without the user taking the time to install a proper antivirus software. Ideally, a template will be created and this image will include the requisite security software prior to the actual VM being created. By utilizing such a template, any VM created is secure...
