I'm actually creating an internal company hardening guide for our VMware support team to implement based on the VMware vSphere 5.0 hardening guide and local security requirements. Step 4 of the 'ESXi' section of the VMware guide specifically states if configuring a password ageing policy (which would suggest you can) make sure that it is greater than the 30 day ageing policy for the vpxuser.
↧