VMware-2V0-21.23 104题 新.pdf

Full Transcript

VMware

2V0-21.23
店 店
铺 铺
： ：
学 学
习 习
小 小
店 店
66 66

2V0-21.23 - VMware vSphere 8.x Professional

VMware vSphere 8.x
Professional
Version: 4.0

店 店[ TTotal Questions: 104]
铺 铺
： ：
学 学
习 习
小
Web: www.examsvce.com
ce.com
com 小
店 店
Email: [email protected]
om
m 66 66
 VMware - 2V0-21.23

Question #:1

An administrator manually configures a reference ESXi host that meets company security standards for
vSphere environments. The administrator now needs to apply all of the security standards to every identically
configured host across multiple vSphere clusters within a single VMware vCenter instance.

Which four steps would the administrator complete to meet this requirement? (Choose four.)
店 店
A. Extract铺
xtract the hhost profile from the reference host 铺
： ：
学 学
B. Export the host 习 from vCenter.
st profi
profile 习
小 小
店on tthe reference host. 店
C. Import host customization
zation
ation
66 66
D. Attach the host profile to each cluster that requires the secure configuration.

E. Check the compliance of each host against the host profile.

F. Reset host customization on the reference host.

G. Remediate all non-compliant hosts.

Answer: A D E G

Explanation
To apply the security standards from a reference host to other hosts across multiple clusters, the administrator
needs to extract a host profile from the reference host, which captures its configuration settings; attach the host
profile to each cluster that requires the same configuration; check the compliance of each host against the host
profile, which compares their settings; and remediate all non-compliant hosts, which applies the configuration
settings from the host profile.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4

Question #:2
店 店
铺 铺
An administrator：
istrator
strator ：
creates a virtual machine that contains the latest company-approved
crea ny-approved
y-appro software, tools and
security updates. 学
es.. Compan
Company policy requires that only full clones are allowed for
r 学wo
server workloads.
work
习 习
小 小
A combination of which two 店
wo tasks 店 of this
should the administrator complete to prepare for the deployment
sh ploymen
virtual machine for multiple users? 66(C
sers? (Choose two.)
(Ch 66
A. Set appropriate permissions on the virtual machine.

B. Create a virtual machine customization specification.

C. Upgrade the virtual hardware.

1 of 68
 VMware - 2V0-21.23

D. Convert the virtual machine to a template.

E. Take a snapshot of the virtual machine.

Answer: B D

Explanation
店 店
铺
Option B and D aare correct because they allow the administrator to create
铺
te a virtu
virtua
virtual machine customization
：
on,, whi
specification, which ca ngs
can be used to customize guest operating system settings ：
gs for mult
multiple virtual machines,
学
and convert the virtual ma
mac 学
machine to a template, which can be used to create full clones
lones of se
ser
server workloads.
习 习
小
ctt because assigning
Option A is incorrect as
小
hine does n
appropriate permissions on the virtual machine no
not prepare it for
deployment for multiple users.店
ers. Op
Optio 店
waree does no
Option C is incorrect because upgrading the virtual hardware not prepare
66
it for deployment for multiple users. Op
O 66
rtual
ual mac
Option E is incorrect because taking a snapshot of the virtual machine
does not prepare it for deployment for
f multiple users. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-9F9E3F8C-0E2B

Question #:3

An administrator has a requirement to revert a running virtual machine to a previous snapshot after a failed
attempt to upgrade an application. When the administrator originally took the snapshot, the following choices
in the Take Snapshot dialog were made:

Snapshot the virtual machine's memory = false

Quiesce guest file system = false

What will be the result of the administrator selecting the ‘Revert to Latest Snapshot? option to return the
virtual machine to a previous snapshot? (Choose two.)

A. The virtual machine will be restored to the parent snapshot

B. The virtual machine will be restored in a powered off state

C. The virtual machine will be restored to the child snapshot

D. The店 virtual machine will be restored in a powered on state
hee vi
virtu 店
铺 铺
： ：
E. The virtual
rtual
学
machine will be restored in a suspended state
tual mach
machin
学
习 习
Answer: A B 小 小
店 店
Explanation
66 66
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-3E1BB630-9223

Question #:4

An administrator is tasked with configuring remote direct memory access (RDMA) over Converged Ethernet

2 of 68
 VMware - 2V0-21.23

v2 (RoCE v2).

Which two types of adapters must the administrator configure? (Choose two.)

A. Paravirtual RDMA adapter

B. RDMA network adapter

店
C. Software
oftware iiSCSi
iS adapter
铺
：
D. Fibre Channel
hannel Ethernet (FCoE) adapter
nnel over E 学
习
小
E. Software NVMe over RDM storage adapter
verr RDMA 店
66
Answer: B E

Explanation
ESXi 7 and later supports RoCE v2 technology, which enables RDMA over an Ethernet network. Hosts use an
RDMA network adapter installed on the host and a software NVMe over RDMA storage adapter.

https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-storage/GUID-F4B42510-9E6D-4446-816A-501286

Question #:5

An administrator is asked to segregate virtual machine (VM) traffic by VLAN on a vSphere standard switch
The following requirements must be met:

VLAN ID on the switch port group must be 4095.

VLAN tagging must be done at the VM level.

Which tagging mode is required?

A. External Switch Tagging (EST)

店
B. None
one
ne 店
铺 铺
： ：
学
C. Virtuall Guest Tag
Tagging
Tagg (VGT)
学
习 习
小
D. Virtual Switch Tagging (VST)
gging (VS 小
店 店
Answer: C
66 66
Explanation
The tagging mode that is required is Virtual Guest Tagging (VGT), which allows VLAN tagging to be done at
the VM level. VGT requires that the VLAN ID on the switch port group be set to 4095, which is a special
value that indicates that packets from all VLANs are allowed to pass through. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-D35A0A1C-B6

3 of 68
 VMware - 2V0-21.23

https://kb.vmware.com/s/article/1003806

Question #:6

During the staging of a patch on a vCenter Server Appliance, an error was encountered and the process
stopped. An administrator resolved the root cause and is ready to continue with the staging of the patch.
店
铺
From thee vCenter M Management Interface, which action should the administrator
：
strator ttake to continue the process
nistrator
from the pointt at which the
th error occurred? 学
习
小
A. Use the Stage and
d Install option
opti to resume the staging.
op
店
B. Use the Resume option to resum
resume
esum the staging.
66
C. Use the Unstage option to restart the staging.

D. Use the Stage Only option to restart the staging.

Answer: B

Explanation
docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.upgrade.doc/GUID-FF533442-66F0-4797-976

Question #:7

An administrator notices a performance issue in VMvvare vCenter To try and understand more about the
performance issue, the administrator needs to gather more information about the vCenter database to eliminate
a potential disk space issue.

Which two tools can the administrator use? (Choose two.)

A. vCenter Management Interface (VAMI)

店
B. Perfmon
rfmo
fm
店
铺 铺
C. df ： ：
学 学
习 习
D. esxtop 小 小
店 店
E. vSphere Client 66 66
Answer: A C

Explanation
https://kb.vmware.com/s/article/76563

4 of 68
 VMware - 2V0-21.23

Question #:8

Which three features are only available when using vSphere Distributed Switches instead of vSphere Standard
Switches? (Choose three.)

A. 802.1Q tagging

店
B. Port
rt mirroring
ort m
mir 店
铺 铺
： ：
C. Netflow
ow
学 学
习kup and rrestore 习
D. 小
Configuration backup
ackup 小
店 店
E. IPv6 support 66 66
F. IPv4 support

Answer: B C D

Explanation
Three features that are only available when using vSphere Distributed Switches instead of vSphere Standard
Switches are port mirroring, which allows monitoring network traffic on a virtual switch port; Netflow, which
allows collecting IP traffic information from a virtual switch; and configuration backup and restore, which
allows saving and restoring distributed switch settings.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-D5960C77-0D1
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-A59628EA-985
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-E9EB9D18-692

Question #:9

An administrator needs to consolidate a number of physical servers by migrating the workloads to a
software-defined data center solution.
店 店
铺
Which VMware solution should the administrator recommend?
铺
： ：
A. 学
VMware Horizon 学
习 习
小 小
B. VMware vSAN 店 店
66 66
C. VMware vSphere

D. VMware

Answer: C

Explanation

5 of 68
 VMware - 2V0-21.23

Option C is correct because VMware vSphere is the solution that provides a software-defined data center
platform that can consolidate physical servers by migrating the workloads to virtual machines. Option A is
incorrect because VMware Horizon is a solution for virtual desktop infrastructure (VDI) and application
delivery. Option B is incorrect because VMware vSAN is a solution for software-defined storage that is
integrated with vSphere. Option D is incorrect because VMware NSX is a solution for software-defined
networking that is integrated with vSphere. References: https://www.vmware.com/products/vsphere.html

店 店
铺
n #:10
Question 铺
： ：
学 学
习
ses cases fo
What are two uses for VMware Tools? (Choose two.)
习
小 小
A. Time synchronization
on 店 an NNTP server
n with 店
66 66
B. Direct deployment of the Ariaa A
Automation Config minion

C. Share folders between ESXi hosts and guest OS file systems

D. Ability to shut down a virtual machine remotely

E. Support for unsupported network device drivers

Answer: B D

Explanation
https://www.stevenbright.com/2022/03/deploy-salt-minions-automatically-using-vmware-tools/

Two use cases for VMware Tools are direct deployment of the Aria Automation Config minion and ability to
shut down a virtual machine remotely. Direct deployment of the Aria Automation Config minion is a feature
that allows the administrator to deploy a configuration management agent to a virtual machine using VMware
Tools. This feature enables automation and orchestration of virtual machine configuration tasks. Ability to
shut down a virtual machine remotely is a feature that allows the administrator to gracefully power off a
virtual machine from the vSphere Client or other VMware products. This feature requires VMware Tools to be
installed and running on the guest operating system. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vmwaretools.doc/GUID-28C39A00-74

店 店
铺 铺
Question #:11
： ：
学 学
习 vSphere Lifecycle Manager to install patches to a vSphere
An administrator iss configurin
configuring 习 clu
Sphere cluster. The cluster
小 (V 小 ccannot be
runs workload virtual machines
店 the installation of the patches.
achines (VMs) that are incompatible with vSphere vMotion, and
(VM
店
d therefore
live migrated between hosts during 66
uring 66
Which configuration in vSphere Lifecycle Manager will allow the administrator to reduce the downtime
associated with the patching operation without migrating the VMs?

A. Enable Distributed Power Management (DPM) and set the VM power state to the suspend to disk option

B. Enable Quick Boot and set the VM power state to the suspend to disk option

6 of 68
 VMware - 2V0-21.23

C. Enable vSphere High Availability (HA) admission control and set the VM power state to the suspend to
memory option

D. Enable Quick Boot and set the VM power state to the suspend to memory option

Answer: D

Explanation
atio
店
铺
vmwa ager/GUID-0
er/GU ：
https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-lifecycle-manager/GUID-06A5D316-9452-4A5D-A5
s.vmware.co
学
习
The administrator should
hould enable
enab Quick Boot and set the VM power state to the suspend 小
end to memory
mem
me option,
ministrator
istrator to reduce the downtime associated with the patching operation
which will allow the administrator 店eration wi
without
migrating the VMs. Quick Boot ott is a feature
fe
fea 66
that skips the hardware initialization phase during reboot,
g host reb
which reduces the system boot time. e SSuspend to memory is an option that preserves the state of thee V
VMs in the
host memory and restores them from memory after the reboot, which minimizes the VM downtime. These two
features work together to optimize the remediation process and speed up the patching operation. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere-lifecycle-manager.doc/GUID-5AF3C64

Question #:12

Which step is completed during Stage 1 of the vCenter Server Appliance deployment?

A. Join a vCenter Single Sign-On domain

B. Create a new vCenter Single Sign-On domain

C. Select the deployment size

D. Configure SSH access

Answer: C

Explanation
The minimum network throughput in Gb/s for vSAN using the Express Storage Architecture (ESA) is 1 Gb/s,
店
which is the minimum
mi
m 店
er, VM
requirement for vSAN network adapters. However, VMw
VMware recommends using 10
铺 铺
Gb/s or higher
：
igher fo better performance and reliability. References:
for be
：
学
mware.com 学
https://docs.vmware.com/en/VMware-vSphere/8.0/com.vmware.vsphere.vsan-planning.doc/GUID-9F1D4A3B-3
n-planning.d
-planning
习 习
小 小
om/en/VMw
m/en/VMw
店 店
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-1E39EF05-1DD7-4E9
UID-1E39EF
D-1E39E
6 6 6F05
6
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-1E39EF05-1DD7-4E9
Mware-
ware EF05-

Question #:13

Refer to the exhibit.

7 of 68
 VMware - 2V0-21.23

店 店
铺： 铺：
学习 学习
小 小店
店6 66
6

An administrator set up the following configuration:

The distributed switch has three ESXi hosts, and each host has two 40 Gbps NICs.

The amount of bandwidth reserved for virtual machine (VM) traffic is 6 Gbps.

The administrator wants to guarantee that VMs in the Finance distributed port group can access 50 percent of
the available reserved bandwidth for VM traffic. k

Given this scenario, what should the size (in Gbps) of the Finance network resource pool be?

A. 18 店 店
铺 铺
： ：
B. 80
学 学
习 习
C. 36 小 小
店 店
D. 120
66 66
Answer: A

Explanation
The size of the Finance network resource pool should be 50 percent of the reserved bandwidth for VM traffic,
which is 6 Gbps x 3 hosts = 18 Gbps.

8 of 68
 VMware - 2V0-21.23

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-9F1D4E96-3392

https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-networking/GUID-29A96AB2-AEBF-420E-BDD6-4

Question #:14
店 店
铺
An administrator
：
nistrator is ttasked with configuring certificates for a VMware software-defined
oftware-defin
ftware-d data center (SDDC)
based on the following
ollowing re requirements: 学
习
小
All certificates should certificates trusted by the Enterprise Certificate Authority (CA).
d use certifi
certific CA).
店
The solution should minimize the ongoing management overhead of replacing certificates.
hee on
66
Which three actions should the administrator take to ensure that the solution meets corporate policy? (Choose
three.)

A. Replace the VMware Certificate Authority (VMCA) certificate with a self-signed certificate generated
from the

B. Replace the machine SSL certificates with custom certificates generated from the Enterprise CA.

C. Replace the machine SSL certificates with trusted certificates generated from the VMware Certificate
Authority (VMCA).

D. Replace the VMware Certificate Authority (VMCA) certificate with a custom certificate generated from
the Enterprise CA.

E. Replace the solution user certificates wife custom certificates generated from the Enterprise CA.

F. Replace the solution user certificates with trusted certificates generated from the VMware Certificate
Authority (VMCA).

Answer: B D E

店
Explanation
atio
店
铺 铺
：
Option B, D and E are ccorrect because they allow the administrator to replace ：
cee the mach
machine SSL certificates,
学 学
习
rtificate
the VMware Certificatecate Au
Aut
Authority
习
ificates
ates wit
(VMCA) certificate and the solution user certificates with custom
certificates generated from小
om the En 小
Enterprise CA, which will ensure that all certificates are trusted by the
Enterprise CA and minimize 店 店
ongoing management overhead of replacing certificates. Option A iis incorrect
izee the ong
ongo
66
because replacing the VMCA certificat
certificate
ertifica with a self-signed certificate generated from the VMCA 66
CAA will nnot
ensure that the certificate is trusted bby the Enterprise CA. Option C is incorrect because replacing theh machine
SSL certificates with trusted certificates generated from the VMCA will not ensure that the certificates are
trusted by the Enterprise CA. Option F is incorrect because replacing the solution user certificates with trusted
certificates generated from the VMCA will not ensure that the certificates are trusted by the Enterprise CA.
References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-A2A4371A-B888-4

9 of 68
 VMware - 2V0-21.23

Question #:15

An administrator is completing the configuration of a new vSphere cluster and has enabled vSphere High
Availability (HA) and vSphere Distributed Resource Scheduler (DRS).

After adding the ESXi hosts to the cluster, which networking information will the administrator be prompted
to provide when using the Cluster Quickstart workflow?
店
A. vMotion
Motion nnetworking
netw 铺
：
学
B. Management networking
ent network
networki 习
小
C. vSAN networking 店
66
D. Virtual machine networking

Answer: A

Explanation
https://core.vmware.com/resource/cluster-quickstart#section1

Question #:16

An administrator Is looking to deploy a new VMware vCenter Instance. The current environment consists of
75 hosts and is expected to grow up to 100 hosts over the next three years.

Which deployment size should the administrator select?

A. Medium

B. Tiny

C. Large

D. Small
al
店 店
Answer: D 铺 ：
铺
：
学 学
习 习
Explanation
小 小
店 店
VMWare: Small environmentt (up 66
up to 1100
10 hosts or 1,000 virtual machines) Medium environment
ent 66
nt (up to 400
hosts or 4,000 virtual machine)

https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-88571D8A-46E1-464

The administrator should select the small deployment size for the new vCenter Server instance, which is
suitable for an environment with up to 100 hosts or 1,000 virtual machines. The small deployment size has 4
vCPUs and 19 GB of memory, which can handle the current and expected growth of the environment. The

10 of 68
 VMware - 2V0-21.23

other deployment sizes are either too large or too small for the environment. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-88571D8A-46E1-464

Question #:17

An administrator is tasked with adding two additional hosts into an existing production vSphere cluster to
support the
he nneed for additional capacity.
店 店
铺 铺 esx0
The vSphereere ：
cluster
re clust currently
c has four identically configured ESXi hosts (esxOT ：
esxOT esx02. esx03 and esx04) that
学 CPUs. The two new hosts (esx05 and esx06) are configured
utilize Intel Skylake-based
ylake-based
lake-base 学 ide
nfigured
figured identically
id in terms of
memory and storagee to习 习
小
the existing
exi
exist hosts: but utilize Intel Ice Lake-based CPUs.
小
店 店
The administrator must ensuree that: 66 66
Any virtual machine migrates to any of the six ESXi hosts running in the cluster.

There is no virtual machine downtime during the process of adding the new hosts.

Which step should the administrator take to meet these requirements?

A. Create a new vSphere cluster with Enhanced vMotion Compatibility (EVC) enabled and move all hosts
into A' the new cluster

B. Create a new vSphere cluster and move only three hosts into the new cluster.

C. Configure Enhanced vMotion Compatibility (EVC) mode on the existing cluster and add the two new
hosts into the cluster.

D. Create a new vSphere cluster with vSphere High Availability (HA) enabled and move all hosts into the
new cluster

Answer: C

Explanation
The step that the administrator should take to meet these requirements is to configure Enhanced vMotion
店bility (EVC)
bilit
Compatibility ( 店
mode on the existing cluster and add the two new host
hosts in
into the cluster. EVC mode
铺
allows migration
gration of virtual machines between different generations of CPUs 铺
Us by mmas
masking unsupported
： ：
学
atures.
tures. EVC mode can be enabled on an existing cluster without affecting powered-on
processor features.
学 po
p virtual
machines. References: 习
nces:
es: 习
小
om/en/VMw
m/en/VMw 小
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-9F444D9B-44A
doc/GUID-9
c/GUID-9
店 店
6 6
ere/201
e/20
6
l 6
https://blogs.vmware.com/vsphere/2019/06/enhanced-vmotion-compatibility-evc-explained.html

Question #:18

An administrator is creating a content library to manage VM templates and ISO images. The administrator
wants to password-protect the images and templates and share them with a remote site.

11 of 68
 VMware - 2V0-21.23

Which two tasks must the administration perform when creating the content library? (Choose two.)

A. Publish the local content library.

B. Enable the security policy.

C. Create a subscribed content library.

店 店
铺
elect an NFS
D. Select N datastore.
铺
： ：
学
uthenticatio
thentica
E. Enable authentication. 学
习 习
小 小
Answer: A E 店 店
66 66
Explanation
To password-protect and share images and templates with a remote site, the administrator needs to publish the
local content library, which makes it available for subscription by other vCenter Server instances; and enable
authentication, which requires users to enter credentials when accessing the content library.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-FBEED81C-F9D

Question #:19

An administrator wants to create virtual machine (VM) templates and store them in a content library. The
administrator would like to use the content library to manage different versions of these templates so that
reverting to an earlier version is an option.

How should the administrator create these templates?

A. Select a VM in the vCenter inventory.

Clone the VM to the content library as a VM template type.

B. Select a VM template in the vCenter inventory. Clone the template to the content library.
店 店
C. Export
xport铺 V in the vCenter inventory to an OVF template. Import
port a VM 铺
OVF ttemplate into the content
rt the OV
： ：
library.
学 学
习 习
D. Convert a VM to 小
o a template in the vCenter inventory. 小
店 店
66 library.
Clone the template to the conten
content
onten
66
Answer: A

Explanation
Option A is correct because it allows the administrator to clone a VM to the content library as a VM template
type, which can be used to create and manage different versions of these templates in the content library.

12 of 68
 VMware - 2V0-21.23

Option B is incorrect because it requires the administrator to convert a VM to a template in the vCenter
inventory first, which is an extra step. Option C is incorrect because it requires the administrator to export a
VM to an OVF template and import it into the content library, which are extra steps. Option D is incorrect
because it requires the administrator to convert a VM to a template in the vCenter inventory and clone it to the
content library, which are extra steps. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-9F9E3F8C-0E2B

店 店
Question
铺
n #:20
铺
：
An administrator
orr has been notified that a number of hosts are not compliant with
ith 学 company policy for time
h the com
comp
习
synchronization.
小
店
The relevant portion of the policy
olicy states:
licy state 66
All physical servers must synchronize time with an external time source that is accurate to the microsecond.
Which step should the administrator take to ensure compliance with the policy?

A. Ensure that each vCenter Server Appliance is configured to use a Network Time Protocol (NTP) source.

B. Ensure that each ESXi host is configured to use a Precision Time Protocol (PTP) source.

C. Ensure that each ESXi host is configured to use a Network Time Protocol (NTP) source.

D. Ensure that each vCenter Server Appliance is configured to use a Precision Time Protocol (PTP) source.

Answer: B

Explanation
To comply with the policy of synchronizing time with an external source that is accurate to the microsecond,
the administrator needs to ensure that each ESXi host is configured to use a PTP source, which provides higher
accuracy than NTP.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-F7DF1DD3-E3F

店 店
铺
Question #:21 铺
： ：
学 学 VM
习 wi
An administrator is tasked 习 VMware
with migrating a single virtual machine (VM) from an existing
xisting V vCenter to
a secure environment where小corpo
here d. 小
corporate security policy requires that all VMs be encrypted.
ted. secure
The sec
secu
店 vCenter 店conta
number of encrypted VMs.
6
environment consists of a dedicated
edicated
6
vC instance with a 4-node vSphere cluster and already
ready
eady
66
contains
contai a

Which two steps must the administrator take to ensure the migration is a success? (Choose two.)

A. Ensure that the source and destination vCenter instances share the same Key Management Server
(KMS).

B. Ensure that Encrypted vMotion Is turned off for the VM.

13 of 68
 VMware - 2V0-21.23

C. Ensure that the VM is encrypted before attempting the migration.

D. Ensure that the VM is powered off before attempting the migration.

E. Ensure that the source and destination vCenter Servers have a different Key Management Server (KMS).

Answer: A C
店
Explanation
nation
ation 铺
：
学
To ensure a successful
ssful
ful migration
migrat 习
migrati of an encrypted VM to a secure environment, thee administra
administrat
administrator needs to
小
ensure that the source and
d destinat
destinati vCenter instances share the same Key Management
destination ent
店
nt Server (K
(KMS),
which provides encryption keys both environments; and ensure that the VM is encrypted
ys for bo
bot
erving
rvin its encryption status during vMotion.
the migration, which allows preserving
66
d before attempting
att
atte

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-C3FFBF62-D6BF-4

Question #:22

An administrator is investigating reports of users experiencing difficulties logging into a VMware vCenter
instance using LDAP accounts.

Which service should the administrator check as part of troubleshooting?

A. vSphere Authentication Proxy Service

B. Lookup Service

C. Identity Management Service

D. VMware Authentication Framework Daemon

Answer: C
店 店
铺
Explanation
nation 铺
： ：
学 学
Identity Management
ment
习
nt Servi
Service
习
Servic is the service that handles authentication requests from
m LDAP
LDA accounts and
other identity sourcess in小
n vCen
vCenter Server. 小
店 店
References: 66 66
are F2E
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-FE1D5F2E-E3AC-4D

Question #:23

An administrator is investigating user logon failures for a VMware vCenter instance

14 of 68
 VMware - 2V0-21.23

Where can the administrator find log files containing information related to user login activities?

A. On the vCenter Management Interface

B. On the ESXi host using the Direct Console User Interface (®)

C. On the vCenter Server Appliance

店 店
D. In
铺
vSphere Client when viewing the vCenter virtual machine
n the vSp
vSph
铺
： ：
Answer: C 学 学
习 习
小 小
Explanation 店 店
66 66
The administrator can find log filess co
containing information related to user login activities on the vCenter
Cen
Server Appliance, which is a preconfigured Linux-based virtual machine that runs all vCenter Server services.
The log files are located in /var/log/vmware/vmware-vpx/vpxd.log and
/var/log/vmware/sso/ssoAdminServer.log directories. References:
https://docs.vmware.com/en/VMware-vSphere/8.0/com.vmware.vsphere.troubleshooting.doc/GUID-5F9A7E49-

Question #:24

An administrator plans to bring VMware vCenter offline in order to perform hardware mainte-nance on the
host where the vCenter Server Appliance is running.

Which vSphere feature must be configured to ensure that vCenter users experience minimal downtime?

A. vSphere Distributed Resource Scheduler

B. Hybrid Linked Mode

C. vCenter Server High Availability

D. Enhanced Linked Mode

Answer: C
店 店
铺
Explanation
nation 铺
： ：
学 学
习
are.com/en/V.com/e 习
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.avail.doc/GUID-4A626993-A829-495C
c/GUID-4A6
GUID-4
小 小
店 店
Question #:25
6 6 66
Which three vSphere features are still supported for Windows-based virtual machines when enabling vSphere's
-virtualization-based security feature? (Choose three.)

A. vSphere vMotion

B. PCI passthrough

15 of 68
 VMware - 2V0-21.23

C. vSphere High Availability (HA)

D, vSphere Fault Tolerance

D. vSphere Distributed Resources Scheduler (DRS)

E. Hot Add of CPU or memory
店
铺 铺
Answer: A C E
： ：
学
Explanation 习
小
店
Option A, C and E are correct 66
ct because they indicate that vSphere features such as vMotion, High AvaAvai
Availability
(HA) and Distributed Resource Scheduler
ched
hed (DRS) are still supported for Windows-based virtual machi
machines
achi when
enabling vSphere’s virtualization-based security feature, which provides enhanced protection for guest
operating systems and applications against various attacks. Option B is incorrect because PCI passthrough is
not supported for Windows-based virtual machines when enabling vSphere’s virtualization-based security
feature, as this feature requires direct access to physical devices that cannot be shared or protected by
hypervisor mechanisms. Option D is incorrect because Fault Tolerance is not supported for Windows-based
virtual machines when enabling vSphere’s virtualization-based security feature, as this feature requires
identical execution states for primary and secondary virtual machines that cannot be guaranteed by hypervisor
mechanisms. Option F is incorrect because Hot Add of CPU or memory is not supported for Windows-based
virtual machines when enabling vSphere’s virtualization-based security feature, as this feature requires
dynamic changes to virtual hardware configuration that cannot be handled by hypervisor mechanisms.
References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-A2A4371A-B888-4

Question #:26

An administrator is tasked with deploying a new on-premises software-defined data center (SDDC) that will
contain a total of eight VMware vCenter instances.

The following requirements must be met:

All vCenter instances should be visible in a single vSphere Client session.
店 店
铺
All vCenter
enter inventory
inven
inv should be searchable from a single vSphere Client 铺
session.
ent sessio
session
： ：
学 学
Any administrator
习
ator must bbe able to complete operations on any vCenter instancee using
习 single set of
sing a si
sin
credentials. 小 小
店 店
66
What should the administrator configur
configure to meet these requirements?
configu 66
A. Two Enhanced Linked Mode groups consisting of four vCenter instances each in a Single Sign-On
domain.

B. A single Hybrid Linked Mode group consisting of four vCenter instances each in a Single Sign-On
domain.

16 of 68
 VMware - 2V0-21.23

C. A single Enhanced Linked Mode group consisting of eight vCenter instances in one Single Sign-On
domain.

D. A single Hybrid Linked Mode group consisting of eight vCenter instances in one Single Sign-On
domain.

Answer: C

店 店
铺
Explanation
nation 铺
： ：
学
To meet the requirements
quirements 学
uirements oof viewing and searching all vCenter instances and inventory
nventory
ventory wwit
with a single vSphere
习 习
小 小
Client session and a single set of credentials, the administrator needs to configure a single Enh
Enhan
Enhanced Linked
Mode group consisting off eight店
ight vCenter
vC
vCen instances in one Single Sign-On domain. 店
66 66
References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-39A8C7F4-8D8

https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-vcenter-installation/GUID-4394EA1C-0800-4A6A-A

Question #:27

After adding a new vSphere ESXi host with identical hardware configuration to an existing vSphere cluster,
which task would an administrator complete prior to checking the compliance with an existing host profile?

A. Attach the host profile to the new host

B. Duplicate the host profile

C. Copy the host settings from the new host

D. Import the host profile

Answer: A

Explanation
The task店
k that sh
should be completed prior to checking the compliance with 店
h an ex
exi
existing host profile is to attach
铺 铺
the host profile
： the new host, which allows applying the configuration
rofile tto th
：
template of the reference host to the
n templat
new host. 学 学
习 习
小 小
References:
店 店
66
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.hostprofiles.doc/GUID-0E5BF330-A76
n/VMware-v
VMware-
https://www.nakivo.com/blog/how-to-create-and-set-up-vmware-vsphere-host-profiles/
ow-to-
w-to
GUID-0E5B
ID-0E5B 66

Question #:28

An administrator creates a new corporate virtual machine (VM) template every month to include all of the
latest patches. The administrator needs to ensure that the new VM template is synchronized from the primary
data center site (London) to two secondary data center sites (Tokyo and New York). The administrator is

17 of 68
 VMware - 2V0-21.23

aware that datastore space is limited within the secondary data center sites. The administrator needs to ensure
that the VM template is available in the secondary sites the first time a new virtual machine is requested.

Which four steps should the administrator take to meet these requirements? (Choose four.)

A. Create a new published content library at the primary site.

B. Add the virtual machine template to the subscribed content library.
d th
店
铺
C. Create
ate
te a new published content library in each secondary site.
ne pu ：
学
习
D. Create a new subscribed ccontent library in each secondary site.
小
店
E. Configure the subscribed
ed content
conten library to download content when needed. 66
F. Configure each subscribed content library to download content immediately.

G. Add the virtual machine template to the published content library.

Answer: A D E G

Explanation
To meet the requirements of synchronizing and protecting images and templates with limited datastore space,
the administrator needs to create a new published content library at the primary site, which makes it available
for subscription by other vCenter Server instances; create a new subscribed content library in each secondary
site, which allows accessing content from a published content library; configure the subscribed content library
to download content when needed, which saves datastore space by only downloading content on demand; and
add the virtual machine template to the published content library, which makes it available for other hosts to
use.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-FBEED81C-F9D

Question #:29

店
An administrator
inistrat
nistr 店
is preparing to perform an update to vSphere clusters that
hat aare running vSAN. The
铺
administrator
trator 铺
wants to ensure that the following requirements are met ass part of the update:
ator wa
： ：
学ster习
学
All hosts in the cluster are updated
up with the same software. 习
小 小
The firmware versions on the店 店
66are updated
hosts ar
66
The new software versions are checked for compliance against the vSAN Hardware Compatibility List.

Which three steps should the administrator take to meet these requirements? (Choose three.)

A. Configure vSphere Lifecycle Manager with an image for the cluster.

B. Register the vendor hardware management system as a vCenter Server extension.

18 of 68
 VMware - 2V0-21.23

C. Download the firmware updates from the VMware website

D. Download the firmware updates from the vendor website.

E. Run a hardware compatibility check using vSphere Lifecycle Manager

F. Configure vSphere Lifecycle Manager with a baseline for the cluster.
店 店
铺 铺
Answer: A B E
： ：
学 学
Explanation 习 习
小 小
店 店runni
The administrator should take
vSAN:
6
ke these
6three
th
thr steps to perform an update to vSphere clusters thatt are 66
runnin
running

Configure vSphere Lifecycle Manager with an image for the cluster, which allows the administrator to
specify the desired ESXi version and firmware for the hosts in the cluster.

Register the vendor hardware management system as a vCenter Server extension, which allows the
administrator to update the firmware on the hosts using vSphere Lifecycle Manager. The vendor
hardware management system can also provide the firmware updates to vSphere Lifecycle Manager, so
there is no need to download them from the vendor website separately.

Run a hardware compatibility check using vSphere Lifecycle Manager, which verifies that the new
software and firmware versions are compatible with the vSAN Hardware Compatibility List.

Question #:30

An administrator is responsible for performing maintenance tasks on a vSphere cluster. The cluster has the
following configuration:. Identically configured vSphere ESXi hosts (esx01, esx02, esx03 and esx04)

All workloads are deployed into a single VMFS datastore provided by the external storage array

店
vSpheree H
High
Hig Availability (HA) has not been enabled
店
铺 铺
： RResource Scheduler (DRS) has not been enabled
vSphere Distributed
stributed ：
学 学
习 习
小
Currently, a critical production
duction application
a workload (VM1) is running on esx01. 小
店 店
Given this scenario, which two 66 are required to ensure VM1 continues to run when esx01
o actions 1 is66
01 placed into
pla
plac
maintenance mode? (Choose two.)

A. Fully automated DRS must be enabled on the cluster so that VM1 will be automatically migrated to
another host within the cluster when esx01 is placed into maintenance mode.

B. VM1 must be manually shut down and cold migrated to another host within the cluster using vSphere
vMotion before esx01 is placed into maintenance mode.

19 of 68
 VMware - 2V0-21.23

C. vSphere HA must be enabled on the cluster so that VM1 will be automatically migrated to another host
within the cluster when esx01 is placed into maintenance mode.

D. VM1 must be manually live migrated to another host within the cluster using vSphere vMotion before
esx01 is placed into maintenance mode.

E. VM1 must be manually migrated to another host within the cluster using vSphere Storage vMotion
店
before
ore esx01 is placed into maintenance mode.
fore
店
铺 铺
Answer: A D ： ：
学 学
习 习
Explanation 小 小
店 店
Two actions that are required to 66 66
o ensure VM1 continues to run when esx01 is placed into maintenance
enance
nance mode
m
are enabling fully automated DRS on the cluster, which allows balancing the workload across hosts and
migrating VMs without user intervention; and manually live migrating VM1 to another host within the cluster
using vSphere vMotion, which allows moving a running VM without downtime.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.resmgmt.doc/GUID-F01B2F12-C5BB-
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-F01B2F12-C5B

Question #:31

An administrator remotely deploys VMware ESXi using an out of band management connection and now
needs to complete the configuration of the management network so that the host is accessible through the
vSphere Host Client.

The following information has been provided to complete the configuration:

Host FQDN esxi01corp.local

Management VLAN ID: 10 DHCP: No

Management IP Address: 172.16.10.101/24

店
Management
ement IP Gateway: 172.16.10.1 店
铺 铺
： ：. Corporate DNS 学 172 16.10.5, 172.16.10..6
NS Server
Servers: 学
习 习
call 小 小
DNS Domain: corp.local
店 店
66 66
In addition, all host configurations must also meet the following requirements:
nss mu

The management network must use only IPv4 network protocols.

The management network must be fault tolerant

Which four high level tasks should the administrator complete in the Direct Console User Interface (DCUI) in
order to meet the requirements and successfully log into the vSphere Host Client? (Choose four.)

20 of 68
 VMware - 2V0-21.23

A. Set the value of the VMware ESXi Management Network VLAN ID to 10

B. Configure at least two network adapters for the VMware ESXi Management Network

C. Update the VMware ESXi Management Network IPv4 configuration to use a static IPv4 address

D. Create
eat a DNS A Record for the VMware ESXi host on the corporate
te DNS servers
店 店
铺 铺
E. Disable
sable
able IPv： for the VMware ESXi Management Network
IPv6 fo ：
学 学
习
F. Restore the original Management
iginal Ma vSphere Standard Switch. 习
Man
小 小
店 店 sservers
G. Update the VMware ESXi 66
Management
SXi Mana Network DNS configuration to use the corporate
rate 66
ate DNS
for ' names resolution

Answer: A B C D

Question #:32

Which feature would allow for the non-disruptive migration of a virtual machine between two clusters in a
single VMware vCenter instance?

A. vSphere vMotion

B. Cross vCenter Migration

C. vSphere Storage vMotion

D. vSphere Fault Tolerance

Answer: A

Explanation

店
vSphere vMoti
vMo 店
vMotion allows for the non-disruptive migration of a virtual machine
achine
chin between two clusters in a single
铺
vCenter instance 铺
instance, as long as there is shared storage and network connectivity
tivity between
betwe the clusters.
bet
： ：
学 学
References: 习 习
小
om/en/VMw
m/en/VMw doc/GUID-3
c/GUID-3 小
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-3B41119A-127
店 店
vMotion is used to move the VM 6 6 66bo
M to a ddifferent cluster within the same vCenter. This only workss if both
bot
clusters share the same storage. If they don't you also need to perform a Storage vMotion. Cross vCenter
Migration is only used to migrate to a different vCenter.

Question #:33

f\n administrator needs to provide encryption for workloads within an existing vSphere cluster. The following

21 of 68
 VMware - 2V0-21.23

requirements must be met:

Workloads should be encrypted at rest.

Encrypted workloads must automatically be encrypted during transit.

Encryption should not require any specific hardware.

店 店
hould
铺
ould the administrator configure to meet these requirements?
What should
铺
： ：
A. Encrypted
ed 学 vvMotion
d vSphere 学
习 习
小 小
B. 店 IInterface (UEFI) Secure Boot
Unified Extensiblee Firmware
irmwar 店
66 66
C. Host Encryption

D. VM Encryption

Answer: D

Explanation
The feature that should be configured to provide encryption for workloads within an existing vSphere cluster
without requiring any specific hardware is VM Encryption, which allows encrypting VMs at rest and during
vMotion.

References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4

Question #:34

Refer to the exhibit.

店 店
铺： 铺：
学习 学习
小店 小店
66 66

22 of 68
 VMware - 2V0-21.23

After updating a predefined alarm on VMware vCenter, an administrator enables email notifications as shown
in the attached alarm; however, notifications are NOT being sent.

Where must the mail server settings be configured by the administrator to resolve this issue?

A. In the ESXi host system config

店
B. In the ala
alarm rule definitions 店
铺 铺
： set ：
学settings
C. In the vCenter
Center setti in the vSphere Client 学
习 习
小 IInterface 小
店
D. in the vCenter Management
anagement
nagement
店
Answer: C
66 66
Explanation
Option C is correct because it allows the administrator to configure the mail server settings in the vCenter
settings in the vSphere Client, which are required for sending email notifications for alarms. Option A is
incorrect because it configures the mail server settings on an ESXi host system, which are not used for sending
email notifications for alarms. Option B is incorrect because it configures the alarm rule definitions, which are
already enabled in the exhibit. Option D is incorrect because it configures the vCenter Management Interface,
which is not used for sending email notifications for alarms. References:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.monitoring.doc/GUID-A2A4371A-B88

Question #:35

An administrator needs better performance and near-zero CPU utilization from the ESXI hosts for networking
functions and processing. The administrator creates a new vSphere Distributed Switch and enables network
offloads compatibility.

Which solution would help achieve this goal?

A. VSphere Distributed Services Engine

店
B. Data Processing
ataa Pr
P Units (DPUs)
店
铺 铺
C. vSphere
ere ： I/O Control
re Networ
Network ：
学 学
习 习
小vver
D. Universal Passthrough
through
rough version 2 小
店 店
Answer: B 66 66
Explanation
The solution that would help achieve better performance and near-zero CPU utilization from the ESXi hosts
for networking functions and processing is Data Processing Units (DPUs), which are specialized processors
that offload network services from the CPU and provide hardware acceleration.

23 of 68
 VMware - 2V0-21.23

https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-networking/GUID-41AB1101-D943-490A-BF1A-E5

Question #:36

An administrator has configured Storage I/O Control (SIOC) on a Virtual Machine File System (VMFS)
datastore.

The datastore
asto supports 30,000 IOPS
店 店
O铺
Storage I/O
/O ： hhas been set to manual
Cont
Control 铺
：
学 学
oll is习 习
Storage I/O Control
小
triggered
triggere when latency hits 30 ms
trigger
小
店mach 店
The datastore contains 3 virtual 66 (VMs)
ual machines
machi 66
A gold tier VM

A silver tier VM

A bronze tier VM

Assuming the datastore latency does not exceed 29ms, what is the maximum number of IOPS the bronze tier
VM is entitled to?

A. 30,000

B. 20,000

C. 10.000

D. 5,000

Answer: A

Explanation
The bronze tier VM is entitled to 30,000 IOPS, which is the maximum number of IOPS that the datastore
店
supports.. Sto
Stora
Storage I/O Control (SIOC) does not limit the IOPS of any VM 店 M un
unles
unless the datastore latency exceeds
铺
shold,
old, wh
the threshold, 铺
which is 30 ms in this case. Therefore, as long as the datastore
store
ore late
latency is below 29 ms, the
： ：
bronze tier VM
学
M can use uup to 30,000 IOPS. References:
学
习
are.com/en/V
e.com/e 习