VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API User Manual

vShield Administration GuidevShield Manager 4.1.0 Update 1vShield Zones 4.1.0 Update 1vShield Edge 1.0.0 Update 1vShield App 1.0.0 Update 1vShield En

vShield Administration Guide10 VMware, Inc. Support OfferingsTofindouthowVMwaresupportofferingscanhelpmeetyourbusinessneeds,gotohttp://

vShield Administration Guide100 VMware, Inc. Syntax[no] ip name server A.B.C.DCLI ModeConfigurationExamplevShield(config)# ip name server 192.168.1.3o

VMware, Inc. 101Appendix A Command Line Interface CLI ModePrivilegedUsage GuidelinesvShieldAppCLIExamplevShield# manager key abc123Related Commandss

vShield Administration Guide102 VMware, Inc. Syntaxset clock HH:MM:SS MM DD YYYYCLI ModePrivilegedExamplevShield(config)# set clock 00:00:00 08 28 200

VMware, Inc. 103Appendix A Command Line Interface CLI ModeConfigurationUsage GuidelinesStartingtheSSHserviceandenablingCLIaccessviaSSH(cli s

vShield Administration Guide104 VMware, Inc. Related Commandswritememorywrite eraseResetstheCLIconfigurationtofactorydefaultsettings.Syntaxwri

VMware, Inc. 105Appendix A Command Line Interface Usage GuidelinesvShieldAppCLIExamplevShield# debug copy ftp 192.168.1.1 tcpdumps allRelated Comman

vShield Administration Guide106 VMware, Inc. SyntaxvShieldApp[no] debug packet display interface (mgmt | u0 | p0) [EXPRESSION]vShieldEdge[no] debug

VMware, Inc. 107Appendix A Command Line Interface Related Commandsdebugcopydebugpacketcapturedebugshowfilesdebug serviceEnablesloggingforaser

vShield Administration Guide108 VMware, Inc. CLI ModePrivilegedUsage GuidelinesvShieldAppCLI.Asourceordestinationvalueof0.0.0.0/0:0matchesa

VMware, Inc. 109Appendix A Command Line Interface Show Commandsshow alertsShowssystemalertsastheyrelatetotheprotocoldecodersornetworkevent

VMware, Inc. 11 vShield Manager and vShield Zones

vShield Administration Guide110 VMware, Inc. Related Commandsntpserversetclockshow configurationShowseitherthecurrentglobalconfigurationorthe

VMware, Inc. 111Appendix A Command Line Interface show ethernetShowsEthernetinformationforvirtualmachineinterfaces.Syntaxshow ethernetCLI ModeBa

vShield Administration Guide112 VMware, Inc. Proxy Id = 2, Service Name = vproxy-forward-allow, Num Threads = 0 ACTION=VPROXYProxy Id = 3, Service Nam

VMware, Inc. 113Appendix A Command Line Interface Syntaxshow interface [mgmt | p0 | u0]CLI ModeBasic,PrivilegedExamplemanager# show interface mgmtInt

vShield Administration Guide114 VMware, Inc. ExamplevShield# show ip routeCodes: K - kernel route, C - connected, S - static, > - selected ro

VMware, Inc. 115Appendix A Command Line Interface show kernel message lastShowslastnkernelmessagesforavShieldEdge.Syntaxshow kernel message la

vShield Administration Guide116 VMware, Inc. CLI ModeBasic,PrivilegedUsage GuidelinesvShieldAppCLIExamplevShield# show log alertsRelated Commandssh

VMware, Inc. 117Appendix A Command Line Interface show manager logShowsthesystemlogofthevShieldManager.Syntaxshow manager log [follow | reverse

vShield Administration Guide118 VMware, Inc. Syntaxshow ntpCLI ModeBasic,PrivilegedUsage GuidelinesvShieldManagerCLIExamplemanager# show ntpNTP se

VMware, Inc. 119Appendix A Command Line Interface Syntaxshow running-configCLI ModeBasic,PrivilegedExamplevShield# show running-configBuilding config

vShield Administration Guide12 VMware, Inc.

vShield Administration Guide120 VMware, Inc. show servicesShowstheservicesprotectedbyavShieldApp.Syntaxshow servicesCLI ModeBasic,PrivilegedUs

VMware, Inc. 121Appendix A Command Line Interface show session-manager sessionsShowsthecurrentsessionsinprocessonavShieldApp.Syntaxshow sessi

vShield Administration Guide122 VMware, Inc. show startup-configShowsthestartupconfiguration.Syntaxshow startup-configCLI ModeBasic,PrivilegedExam

VMware, Inc. 123Appendix A Command Line Interface show system loadShowstheaverageprocessingloadonavShieldEdge.Syntaxshow system memoryCLI Mode

vShield Administration Guide124 VMware, Inc. CLI ModeBasic,PrivilegedUsage GuidelinesvShieldEdgeCLIExamplevShield# show system storageshow system u

VMware, Inc. 125Appendix A Command Line Interface ExamplevShield# show vmwall logRelated Commandsshowvmwallrulesshow vmwall rulesShowsthefirewall

vShield Administration Guide126 VMware, Inc. CLI ModeInterfaceConfigurationExamplevShield(config-if)# link-detectorvShield(config-if)# no link-detect

VMware, Inc. 127Appendix A Command Line Interface show tech supportShowsthesystemdiagnosticlogthatcanbesenttotechnicalsupportbyrunningth

vShield Administration Guide128 VMware, Inc. tracerouteTracestheroutetoadestination.Syntaxtraceroute (HOSTNAME | A.B.C.D)CLI ModeBasic,Privilege

VMware, Inc. 129Appendix A Command Line Interface userAddsaCLIuseraccount.Theuseradministhedefaultuseraccount.TheCLIadminaccountandp

VMware, Inc. 13 1VMware®vShieldisasuiteofsecurityvirtualappliancesbuiltforVMwarevCenter™ServerandVmwareESX™integration.vShieldisa

vShield Administration Guide130 VMware, Inc. Terminal Commandsclear vtyClearsallotherVTYconnectionstotheCLI.Syntaxclear vtyCLI ModePrivilegedEx

VMware, Inc. 131Appendix A Command Line Interface Syntaxterminal no lengthCLI ModePrivilegedExamplemanager# terminal no lengthRelated Commandsresetter

vShield Administration Guide132 VMware, Inc.

VMware, Inc. 133 BThisappendixcontainsconfigurationexamplesforabasicpoint‐to‐pointIPSECVPNconnectionbetweenavShieldEdgeandaCiscoor

vShield Administration Guide134 VMware, Inc. TerminologyIPSecisaframeworkofopenstandards.TherearemanytechnicaltermsinthelogsofthevShi

VMware, Inc. 135Appendix B vShield Edge VPN Configuration Examples Phase 1: Main Mode TransactionsThefollowingtransactionsoccurinsequencebetween

vShield Administration Guide136 VMware, Inc. 4ClicktheVPNlink.5TypeanExternalIPAddressfortheVPNserviceonthevShieldEdge.6TypetheNATed

VMware, Inc. 137Appendix B vShield Edge VPN Configuration Examples 4 Double]clicktheRemoteSiteSubnetcellandentertheIPaddressinCIDRformat

vShield Administration Guide138 VMware, Inc. Router(config-isakmp)# authentication pre-shareRouter(config-isakmp)# exitMatch Each Peer with Its Pre-Sh

VMware, Inc. 139Appendix B vShield Edge VPN Configuration Examples resource policy!ip subnet-zero!ip cefno ip dhcp use vrf connected!!no ip ips deny-a

vShield Administration Guide14 VMware, Inc. vShield EdgevShieldEdgeprovidesnetworkedgesecurityandgatewayservicestoisolatethevirtualmachin

vShield Administration Guide140 VMware, Inc. enable password 2KFQnbNIdI.2KYOU encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface Ethernet0/0 na

VMware, Inc. 141Appendix B vShield Edge VPN Configuration Examples crypto map MYVPN interface untrustedcrypto isakmp enable untrustedcrypto isakmp pol

vShield Administration Guide142 VMware, Inc. 000 #1: "s1-c1":500 STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_REPLACE in 27623s; newest I

VMware, Inc. 143Appendix B vShield Edge VPN Configuration Examples Phase 2 Not MatchingvShield EdgevShieldEdgehangsatSTATE_QUICK_I1.Alogmessage

vShield Administration Guide144 VMware, Inc. Cisco<BS>Aug 26 19:00:26 [IKEv1 DEBUG]: Group = 10.20.129.80, IP = 10.20.129.80, sending delete/del

VMware, Inc. 145Appendix B vShield Edge VPN Configuration Examples Version: 1.0 Exchange type: Identity Protection (Main Mode) (2) Flags: 0x

vShield Administration Guide146 VMware, Inc. Domain of interpretation: IPSEC (1) Situation: IDENTITY (1) Proposal payload # 1

VMware, Inc. 147Appendix B vShield Edge VPN Configuration Examples Key Exchange payload Next payload: Nonce (10) Payload length: 132

vShield Administration Guide148 VMware, Inc. Internet Protocol, Src: 10.20.129.80 (10.20.129.80), Dst: 10.20.131.62 (10.20.131.62)User Datagram Protoc

VMware, Inc. 149 CThissectionguidesyouthroughtroubleshootingcommonvShieldissues.Thisappendixcoversthefollowingtopics: “Troubleshootingv

VMware, Inc. 15Chapter 1 Overview of vShield vShield EndpointvShieldEndpointdeliversanintrospection‐basedantivirussolution.vShieldEndpointuse

vShield Administration Guide150 VMware, Inc. Cannot Log In to CLI After the vShield Manager Virtual Machine StartsProblemIcannotlogintothevShiel

VMware, Inc. 151Appendix C Troubleshooting Firewall Block Rule Not Blocking Matching TrafficProblemIconfiguredanAppFirewallruletoblockspecific

vShield Administration Guide152 VMware, Inc. 4Verifythatthekernelmoduleisloaded:vmkload_mod –l | grep vshd -ni5Verifythatthemirrorvirtualm

VMware, Inc. 153Appendix C Troubleshooting To troubleshoot if broadcast packets are being received but unicast packets are being dropped 1Run/opt/vmw

vShield Administration Guide154 VMware, Inc. Port Id isthefirstcolumninallothertables(ActivePorts,SwitchState,andPortstats).Thisisau

VMware, Inc. 155Appendix C Troubleshooting Load-Balancer Throws Error 502 Bad Gateway for HTTP RequestsTo determine why the load balancer service on a

vShield Administration Guide156 VMware, Inc. Bydefault,thevaluesinreleasebuildsaresettoVMWARE_LOGandAUDIT.FormoreonmonitoringvShield

VMware, Inc. 157 IndexAaccessing online help 18adding a user 34admin user account 34alarms for vShield Endpoint 82App Firewall 71about L4 and L2/L3 ru

vShield Administration Guide158 VMware, Inc. Ffirewallabout 27add vShield Edge firewall rule 50adding L2/L3 rules 75adding L4 rules 29, 73adding rules

VMware, Inc. 159Index adding L2/L3 rules to Zones Firewall 30adding L4 rules to App Firewall 73adding L4 rules to Zones Firewall 29deleting App Firewa

vShield Administration Guide16 VMware, Inc.

vShield Administration Guide160 VMware, Inc. vShield App 45vShield Edge 46vShield Endpoint module 47vShield Zones 45unregister a vShield Endpoint SVM

VMware, Inc. 161Index write memory 104ZZones Firewall 27adding L2/L3 rules 30adding L4 rules 29deleting rules 32hierarchy of rules 28planning rule enf

vShield Administration Guide162 VMware, Inc.

VMware, Inc. 17 2ThevShieldManageruserinterfaceoffersconfigurationanddataviewingoptionsspecifictovShielduse.ByutilizingtheVMwareInf

vShield Administration Guide18 VMware, Inc. Accessing the Online HelpTheOnlineHelpcanbeaccessedbyclickingintheupperrightofthevShieldMa

VMware, Inc. 19Chapter 2 vShield Manager User Interface Basics vShield Manager Configuration PanelThevShieldManagerconfigurationpanelpresentsthe

VMware, Inc.3401 Hillview Ave.Palo Alto, CA 94304www.vmware.com2 VMware, Inc.vShield Administration Guide You can find the most up-to-date technical d

vShield Administration Guide20 VMware, Inc.

VMware, Inc. 21 3ThevShieldManagerrequirescommunicationwithyourvCenterServerandservicessuchasDNSandNTPtoprovidedetailsonyourVMwar

vShield Administration Guide22 VMware, Inc. 4TypethepasswordassociatedwiththeusernameinthePasswordfield.5ClickSave.ThevShieldManagercon

VMware, Inc. 23Chapter 3 Management System Settings Set the vShield Manager Date and TimeYoucansetthedate,time,andtimezoneofthevShieldMana

vShield Administration Guide24 VMware, Inc. 4UnderTechSupportLogDownload,clickInitiatenexttotheappropriatecomponent.Onceinitiated,thelog

VMware, Inc. 25Chapter 3 Management System Settings 5ClickGenerate.To import an SSL certificate1ClickSettings&ReportsfromthevShieldManager

vShield Administration Guide26 VMware, Inc.

VMware, Inc. 27 4vShieldZonesprovidesfirewallprotectionaccesspolicyenforcement.Trafficdetailsincludesources,destinations,directionofses

vShield Administration Guide28 VMware, Inc. Default RulesBydefault,ZonesFirewallenforcesasetofrulesallowingtraffictopassthroughallvShie

VMware, Inc. 29Chapter 4 Zones Firewall Management Create a Zones Firewall RuleZonesFirewallrulesallowordenytrafficbasedonthefollowingcrite

VMware, Inc. 3 ContentsAboutThisBook 9vShieldManagerandvShieldZones1 OverviewofvShield 13vShieldComponents 13vShieldManager 13vShieldZones

vShield Administration Guide30 VMware, Inc. 5ClickAdd.AnewrowappearsintheClusterLevelRulessectionofthetable.6Double‐clickeachcellinth

VMware, Inc. 31Chapter 4 Zones Firewall Management 7Double‐clickeachcellinthenewrowtotypeorselecttheappropriateinformation.YoucantypeI

vShield Administration Guide32 VMware, Inc. Delete a Zones Firewall RuleYoucandeleteanyAppFirewallruleyouhavecreated.Youcannotdeletethea

VMware, Inc. 33 5Securityoperationsareoftenmanagedbymultipleindividuals.Managementoftheoverallsystemisdelegatedtodifferentpersonnela

vShield Administration Guide34 VMware, Inc. Managing the Default User AccountThevShieldManageruserinterfaceincludesonedefaultuseraccount,use

VMware, Inc. 35Chapter 5 User Management 4ClickUpdateUser.5Makechangesasnecessary.Ifyouarechangingthepassword,confirmthepasswordbytypi

vShield Administration Guide36 VMware, Inc.

VMware, Inc. 37 6vShieldsoftwarerequiresperiodicupdatestomaintainsystemperformance.UsingtheUpdatestaboptions,youcaninstallandtracks

vShield Administration Guide38 VMware, Inc. 6ClickConfirmInstalltoconfirmupdateinstallation.Therearetwotablesonthisscreen.Duringinstalla

VMware, Inc. 39 7YoucanbackupandrestoreyourvShieldManagerdata,whichcanincludesystemconfiguration,events,andauditlogtables.Configur

vShield Administration Guide4 VMware, Inc. 5 UserManagement 33ManagingUserRights 33ManagingtheDefaultUserAccount 34AddaUser 34AssignaRolea

vShield Zones Administration Guide40 VMware, Inc. Schedule a Backup of vShield Manager DataYoucanonlyscheduletheparametersforonetypeofbackup

VMware, Inc. 41 8SystemeventsareeventsthatarerelatedtovShieldoperation.Theyareraisedtodetaileveryoperationalevent,suchasavShield

vShield Administration Guide42 VMware, Inc. System Event NotificationsvShield Manager Virtual Appliance EventsvShield App EventsSyslog FormatThesyste

VMware, Inc. 43Chapter 8 System Events and Audit Logs Thefieldsandtypesofthesystemeventare:Event ID :: 32 bit unsigned integer Timestamp ::

vShield Administration Guide44 VMware, Inc.

VMware, Inc. 45 9ThischapterdetailsthestepsrequiredtouninstallvShieldcomponentsfromyourvCenterinventory.Thischapterincludesthefollow

vShield Administration Guide46 VMware, Inc. Uninstall a vShield Edge from a Port GroupYoucanuninstallavShieldEdgefromaportgroupbyusingthe

VMware, Inc. 47Chapter 9 Uninstalling vShield Components Uninstall a vShield Endpoint ModuleBeforeyouuninstalltheavShieldEndpointmodulefromth

vShield Administration Guide48 VMware, Inc.

VMware, Inc. 49 10vShieldEdgeprovidesnetworkedgesecurityandgatewayservicestoisolatethevirtualmachinesinaportgroup,vDSportgroup,or

VMware, Inc. 5 vShieldEdgeandPortGroupIsolationvShieldAppandvShieldEndpoint11 vShieldAppManagement 61SendvShieldAppSystemEventstoaSy

vShield Administration Guide50 VMware, Inc. Specify a Remote Syslog ServerYoucansendvShieldEdgeevents,suchasviolatedfirewallrules,toasysl

VMware, Inc. 51Chapter 10 vShield Edge Management 5ClickAdd.Anewrowappearsinthetable.6Double‐clickeachcellintherowtoenterorselectthe

vShield Administration Guide52 VMware, Inc. To configure a DNAT rule for a vShield Edge1IntothevSphereClient,gotoInventory>Networking.2 Se

VMware, Inc. 53Chapter 10 vShield Edge Management 5UnderStaticBindings,clickAddBindings.Anewrowappearsinthetable.6Double‐clickeachcelli

vShield Administration Guide54 VMware, Inc. To configure VPN on a vShield Edge1InthevSphereClient,gotoInventory>Networking.2 Selectaninte

VMware, Inc. 55Chapter 10 vShield Edge Management Manage Load Balancer ServiceThevShieldEdgeprovidesloadbalancingforHTTPtraffic.Loadbalancin

vShield Administration Guide56 VMware, Inc. 15 PressENTER.Youcanaddadditionalwebserversinthesamemanner.16 ClickCommit.17 Ifloadbalancers

VMware, Inc. 57 vShield Edge and Port Group Isolation

vShield Administration Guide58 VMware, Inc.

VMware, Inc. 59 vShield App and vShield Endpoint

VMware, Inc. 6 Events 83AuditMessages 86AppendixesA CommandLineInterface 89LoggingInandOutoftheCLI 89CLICommandModes 89CLISyntax 90Moving

vShield Administration Guide60 VMware, Inc.

VMware, Inc. 61 11vShieldAppisaninterior,vNIC‐levelfirewallthatallowsyoutocreateaccesscontrolpoliciesregardlessofnetworktopology.A

vShield Administration Guide62 VMware, Inc. Back Up the Running CLI Configuration of a vShield AppTheCLIConfigurationoptiondisplaystherunningco

VMware, Inc. 63Chapter 11 vShield App Management Restart a vShield AppYoucanrestartavShieldApptotroubleshootanoperationalissue.To restart a

vShield Administration Guide64 VMware, Inc.

VMware, Inc. 65 12FlowMonitoringisatrafficanalysistoolthatprovidesadetailedviewofthetrafficonyourvirtualnetworkthatpassedthrough

vShield Administration Guide66 VMware, Inc. View a Specific Application in the Flow Monitoring ChartsYoucanselectaspecificapplicationtoviewin

VMware, Inc. 67Chapter 12 Flow Monitoring 7 SelectadestinationIPaddress.8 SelectasourceIPaddress.AtthesourceIPaddresslevel,youcancreat

vShield Administration Guide68 VMware, Inc. 14 (Optional)Double‐clicktheActioncolumncelltochangethevaluetoAlloworDeny.15 (Optional)With

VMware, Inc. 69Chapter 12 Flow Monitoring 10 Double‐clicktheResourcecelltoselectthecontainerinwhichtoenforcethenewmapping.TheANYvalue

VMware, Inc. 7 C Troubleshooting 149TroubleshootingvShieldManagerInstallation 149vShieldOVAFileExtractedtoaPCWherevSphereClientIsNotIns

vShield Administration Guide70 VMware, Inc.

VMware, Inc. 71 13vShieldAppprovidesfirewallprotectionthroughaccesspolicyenforcement.TheAppFirewalltabrepresentsthevShieldAppfirewall

vShield Administration Guide72 VMware, Inc. AsecuritygroupisatrustzonethatyoucreateandassignresourcestoforAppFirewallprotection.Secu

VMware, Inc. 73Chapter 13 App Firewall Management  Denyalltrafficbydefault.YoucanchangetheActionstatusofthedefaultrulesfromAllowtoDe

vShield Administration Guide74 VMware, Inc. To create a firewall rule at the cluster level1InthevSphereClient,gotoInventory>HostsandClust

VMware, Inc. 75Chapter 13 App Firewall Management Create a Layer 2/Layer 3 App Firewall RuleTheLayer2/Layer3firewallenablesconfigurationofallo

vShield Administration Guide76 VMware, Inc. 5Double‐clicktherowandtypeanameforthegroup.6ClickAdd.Aftersecuritygroupcreationiscomplete,

VMware, Inc. 77Chapter 13 App Firewall Management Revert to a Previous App Firewall ConfigurationThevShieldManagersavesasnapshotofAppFirewall

vShield Administration Guide78 VMware, Inc. SpoofGuard Screen OptionsTheSpoofGuardscreendisplaysthefollowingoptions.Enable SpoofGuardYoumusten

VMware, Inc. 79Chapter 13 App Firewall Management 5Dooneofthefollowing: Selectthetopcheckboxintheleftsidecheckboxcolumntoselectall

VMware, Inc. 8

vShield Administration Guide80 VMware, Inc.

VMware, Inc. 81 14vShieldEndpointdeliversanintrospection‐basedantivirussolution.vShieldEndpointusesthehypervisortoscanguestvirtualmach

vShield Administration Guide82 VMware, Inc. AlarmsAlarmssignalthevCenterServeradministratoraboutvShieldEndpointeventsthatrequireattention.

VMware, Inc. 83Appendix 14 vShield Endpoint Events and Alarms VM AlarmsVMalarmsaregeneratedbyeventsaffectingthehealthstatusofthevShieldEn

vShield Administration Guide84 VMware, Inc. 0005 VSM_FSFD_EVENT_UNKNOWN_STATE timestamp warning N/A0006 VSM_FSFD_EVENT_MISSING_TIMER timestamp error

VMware, Inc. 85Appendix 14 vShield Endpoint Events and Alarms PossiblecausesforeventsarelistedinTable 14‐7:Table 14-7. Possible Causes for Eve

vShield Administration Guide86 VMware, Inc. Audit MessagesAuditmessagesincludefatalerrorsandotherimportantauditmessagesandareloggedto vmw

VMware, Inc. 87 Appendixes

vShield Administration Guide88 VMware, Inc.

VMware, Inc. 89 AEachvShieldvirtualmachinecontainsacommandlineinterface(CLI).ThisappendixdetailsCLIusageandcommands.Useraccountmanag

VMware, Inc. 9 Thismanual,thevShieldAdministrationGuide,describeshowtoinstall,configure,monitor,andmaintaintheVMware®vShield™systemb

vShield Administration Guide90 VMware, Inc.  Configuration:Configurationmodecommandsallowyoutochangethecurrentconfigurationofutilitieson

VMware, Inc. 91Appendix A Command Line Interface Getting Help within the CLITheCLIcontainsthefollowingcommandsforassistingyouruse.Securing CL

vShield Administration Guide92 VMware, Inc. 6SwitchtoConfigurationmode.manager# configure terminal 7Addauseraccount.manager(config)# user root p

VMware, Inc. 93Appendix A Command Line Interface 8 Savetheconfiguration.9RuntheexitcommandtwicetologoutoftheCLI.10 LogintotheCLI.11 Sw

vShield Administration Guide94 VMware, Inc. CLI ModePrivilegedExamplevShield# rebootRelated CommandsshutdownshutdownIn Privileged mode, the shutdown c

VMware, Inc. 95Appendix A Command Line Interface CLI ModeBasicExamplevShield# disablevShield> Related CommandsenableenableSwitchestoPrivilegedmo

vShield Administration Guide96 VMware, Inc. ExamplevShield(config-if)# exitvShield(config)# exitvShield#Related CommandsendquitinterfaceSwitchestoIn

VMware, Inc. 97Appendix A Command Line Interface Configuration Commandsclear vmwall rulesResetsthefirewallrulesetonavShieldApptothedefault

vShield Administration Guide98 VMware, Inc. Examplemanager# copy running-config startup-configBuilding Configuration...Configuration saved.[OK]Related

VMware, Inc. 99Appendix A Command Line Interface hostnameChangesthenameoftheCLIprompt.The default prompt name for the vShield Manager is manage