You may have noticed VMware recently added a Tab “Open NSX Manager” for your SDDC. On initial SDDC deployment this is only accessible over the internet but is secured behind your VMware Cloud Portal login credentials. Once you connect your VPN or Direct connect you are presented with an internal IP address to access NSX manager but you may notice the Public URL is still accessible. In this guide I will show you how this works as well as options to further secure your environment.
Notice the new button to Open NSX Manager
Once you connect your VPN or Direct Connect you will also notice the following under settings
Notice when I try to open the NSX Manager Public URL on a session that is not already logged into the VMware Cloud Portal I get prompted for login
If you want to secure against a brute force login, you can enable Federated Login and 2 Factor Authentication for the VMware Cloud Portal. See the following Guide