Appendix C:
Virtual Server Security Considerations
Virtual Server has the following default configuration:
• The Virtual Machine Remote Control (VMRC) server is disabled.
• The VMRC server uses port 5900.
• Virtual Server uses Integrated Windows authentication.
• Only local administrators can access the Administration Website, configure Virtual Server, and create and configure virtual machines and virtual networks; other users must be granted the appropriate permissions manually. The Administration Website is a browser-based tool for configuring and managing Virtual Server and its associated virtual machines and virtual networks.
• Firewall and antivirus software running on the host operating system will not protect guest operating systems. To obtain this protection, you must install firewall and antivirus software directly on the guest operating systems.
• The two Virtual Server services run under security accounts that have low privileges: The Virtual Server service (Vssrvc.exe) runs under the Network Service account, which has limited access to the local computer and authenticated access (as the computer account) to network resources. The Virtual Machine Helper service (Vmh.exe) runs under the Local Service account. This account has limited access to the local computer and anonymous access to network resources.
• Only local administrators can configure Virtual Server or create and configure virtual machines. You can give other users the ability to create and configure virtual machines by changing file system security settings. Use care in giving such permissions to other users.
• Virtual machines run under the account of the user who started the virtual machine, unless you specify a different user account under which to run virtual machines and assign the user account to each virtual machine. Make sure that you specify a user account that has a low level of privileges.
Note: To provide a more secure file system, use NT File System (NTFS) on the server that will run the Virtual Server service.