Hi,
I need to implement a segregated VMware infrastructure to host Virtual Machines subjected to ITAR regulations, effectively ensuring that people of non-US approved nationalities can access this infrastructure. Does anyone have any clarity of what is needed to meet these requirements. I am suggesting a separate Vcenter to manage a 2-node cluster on a separate storage array. The non-preferred option is to share a Vcenter and permission off hosts/VMs/datastores. but I'm not comfortable with this level of segregation.
In terms of networking, all management interfaces of ESX hosts and VMware to be firewalled off to restrcted hosts. All Guest VLANs to be segregated and firewalled off.
I then need to think about a separate domain for guests, segregation of ESX host access
Thoughts?