Additional Notes

If a check passes, this plugin reports all the VMs that matched the policy. The audit supplied by Tenable will report both the VM name and IP of the target. However, note that the IP address for a VM is not available unless VMware tools is installed.

The report will appear as follows:

Test VM 2, poweredOff (toolsNotInstalled) - vmsafe.enable : NOT found

Test VM Audit ( - vmsafe.enable : NOT found

Both ESX/ESXi and vCenter can be scanned with the same policy.

Note: vCenter checks run against ESX/ESXi hosts will be skipped.