VMware-2V0-21.23 104题 新.pdf
Document Details
Uploaded by UnforgettableMercury
The British University in Egypt
Tags
Full Transcript
VMware 2V0-21.23 店 店 铺 铺 :...
VMware 2V0-21.23 店 店 铺 铺 : : 学 学 习 习 小 小 店 店 66 66 2V0-21.23 - VMware vSphere 8.x Professional VMware vSphere 8.x Professional Version: 4.0 店 店[ TTotal Questions: 104] 铺 铺 : : 学 学 习 习 小 Web: www.examsvce.com ce.com com 小 店 店 Email: [email protected] om m 66 66 VMware - 2V0-21.23 Question #:1 An administrator manually configures a reference ESXi host that meets company security standards for vSphere environments. The administrator now needs to apply all of the security standards to every identically configured host across multiple vSphere clusters within a single VMware vCenter instance. Which four steps would the administrator complete to meet this requirement? (Choose four.) 店 店 A. Extract铺 xtract the hhost profile from the reference host 铺 : : 学 学 B. Export the host 习 from vCenter. st profi profile 习 小 小 店on tthe reference host. 店 C. Import host customization zation ation 66 66 D. Attach the host profile to each cluster that requires the secure configuration. E. Check the compliance of each host against the host profile. F. Reset host customization on the reference host. G. Remediate all non-compliant hosts. Answer: A D E G Explanation To apply the security standards from a reference host to other hosts across multiple clusters, the administrator needs to extract a host profile from the reference host, which captures its configuration settings; attach the host profile to each cluster that requires the same configuration; check the compliance of each host against the host profile, which compares their settings; and remediate all non-compliant hosts, which applies the configuration settings from the host profile. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4 Question #:2 店 店 铺 铺 An administrator: istrator strator : creates a virtual machine that contains the latest company-approved crea ny-approved y-appro software, tools and security updates. 学 es.. Compan Company policy requires that only full clones are allowed for r 学wo server workloads. work 习 习 小 小 A combination of which two 店 wo tasks 店 of this should the administrator complete to prepare for the deployment sh ploymen virtual machine for multiple users? 66(C sers? (Choose two.) (Ch 66 A. Set appropriate permissions on the virtual machine. B. Create a virtual machine customization specification. C. Upgrade the virtual hardware. 1 of 68 VMware - 2V0-21.23 D. Convert the virtual machine to a template. E. Take a snapshot of the virtual machine. Answer: B D Explanation 店 店 铺 Option B and D aare correct because they allow the administrator to create 铺 te a virtu virtua virtual machine customization : on,, whi specification, which ca ngs can be used to customize guest operating system settings : gs for mult multiple virtual machines, 学 and convert the virtual ma mac 学 machine to a template, which can be used to create full clones lones of se ser server workloads. 习 习 小 ctt because assigning Option A is incorrect as 小 hine does n appropriate permissions on the virtual machine no not prepare it for deployment for multiple users.店 ers. Op Optio 店 waree does no Option C is incorrect because upgrading the virtual hardware not prepare 66 it for deployment for multiple users. Op O 66 rtual ual mac Option E is incorrect because taking a snapshot of the virtual machine does not prepare it for deployment for f multiple users. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-9F9E3F8C-0E2B Question #:3 An administrator has a requirement to revert a running virtual machine to a previous snapshot after a failed attempt to upgrade an application. When the administrator originally took the snapshot, the following choices in the Take Snapshot dialog were made: Snapshot the virtual machine's memory = false Quiesce guest file system = false What will be the result of the administrator selecting the ‘Revert to Latest Snapshot? option to return the virtual machine to a previous snapshot? (Choose two.) A. The virtual machine will be restored to the parent snapshot B. The virtual machine will be restored in a powered off state C. The virtual machine will be restored to the child snapshot D. The店 virtual machine will be restored in a powered on state hee vi virtu 店 铺 铺 : : E. The virtual rtual 学 machine will be restored in a suspended state tual mach machin 学 习 习 Answer: A B 小 小 店 店 Explanation 66 66 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-3E1BB630-9223 Question #:4 An administrator is tasked with configuring remote direct memory access (RDMA) over Converged Ethernet 2 of 68 VMware - 2V0-21.23 v2 (RoCE v2). Which two types of adapters must the administrator configure? (Choose two.) A. Paravirtual RDMA adapter B. RDMA network adapter 店 C. Software oftware iiSCSi iS adapter 铺 : D. Fibre Channel hannel Ethernet (FCoE) adapter nnel over E 学 习 小 E. Software NVMe over RDM storage adapter verr RDMA 店 66 Answer: B E Explanation ESXi 7 and later supports RoCE v2 technology, which enables RDMA over an Ethernet network. Hosts use an RDMA network adapter installed on the host and a software NVMe over RDMA storage adapter. https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-storage/GUID-F4B42510-9E6D-4446-816A-501286 Question #:5 An administrator is asked to segregate virtual machine (VM) traffic by VLAN on a vSphere standard switch The following requirements must be met: VLAN ID on the switch port group must be 4095. VLAN tagging must be done at the VM level. Which tagging mode is required? A. External Switch Tagging (EST) 店 B. None one ne 店 铺 铺 : : 学 C. Virtuall Guest Tag Tagging Tagg (VGT) 学 习 习 小 D. Virtual Switch Tagging (VST) gging (VS 小 店 店 Answer: C 66 66 Explanation The tagging mode that is required is Virtual Guest Tagging (VGT), which allows VLAN tagging to be done at the VM level. VGT requires that the VLAN ID on the switch port group be set to 4095, which is a special value that indicates that packets from all VLANs are allowed to pass through. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-D35A0A1C-B6 3 of 68 VMware - 2V0-21.23 https://kb.vmware.com/s/article/1003806 Question #:6 During the staging of a patch on a vCenter Server Appliance, an error was encountered and the process stopped. An administrator resolved the root cause and is ready to continue with the staging of the patch. 店 铺 From thee vCenter M Management Interface, which action should the administrator : strator ttake to continue the process nistrator from the pointt at which the th error occurred? 学 习 小 A. Use the Stage and d Install option opti to resume the staging. op 店 B. Use the Resume option to resum resume esum the staging. 66 C. Use the Unstage option to restart the staging. D. Use the Stage Only option to restart the staging. Answer: B Explanation docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.upgrade.doc/GUID-FF533442-66F0-4797-976 Question #:7 An administrator notices a performance issue in VMvvare vCenter To try and understand more about the performance issue, the administrator needs to gather more information about the vCenter database to eliminate a potential disk space issue. Which two tools can the administrator use? (Choose two.) A. vCenter Management Interface (VAMI) 店 B. Perfmon rfmo fm 店 铺 铺 C. df : : 学 学 习 习 D. esxtop 小 小 店 店 E. vSphere Client 66 66 Answer: A C Explanation https://kb.vmware.com/s/article/76563 4 of 68 VMware - 2V0-21.23 Question #:8 Which three features are only available when using vSphere Distributed Switches instead of vSphere Standard Switches? (Choose three.) A. 802.1Q tagging 店 B. Port rt mirroring ort m mir 店 铺 铺 : : C. Netflow ow 学 学 习kup and rrestore 习 D. 小 Configuration backup ackup 小 店 店 E. IPv6 support 66 66 F. IPv4 support Answer: B C D Explanation Three features that are only available when using vSphere Distributed Switches instead of vSphere Standard Switches are port mirroring, which allows monitoring network traffic on a virtual switch port; Netflow, which allows collecting IP traffic information from a virtual switch; and configuration backup and restore, which allows saving and restoring distributed switch settings. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-D5960C77-0D1 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-A59628EA-985 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-E9EB9D18-692 Question #:9 An administrator needs to consolidate a number of physical servers by migrating the workloads to a software-defined data center solution. 店 店 铺 Which VMware solution should the administrator recommend? 铺 : : A. 学 VMware Horizon 学 习 习 小 小 B. VMware vSAN 店 店 66 66 C. VMware vSphere D. VMware Answer: C Explanation 5 of 68 VMware - 2V0-21.23 Option C is correct because VMware vSphere is the solution that provides a software-defined data center platform that can consolidate physical servers by migrating the workloads to virtual machines. Option A is incorrect because VMware Horizon is a solution for virtual desktop infrastructure (VDI) and application delivery. Option B is incorrect because VMware vSAN is a solution for software-defined storage that is integrated with vSphere. Option D is incorrect because VMware NSX is a solution for software-defined networking that is integrated with vSphere. References: https://www.vmware.com/products/vsphere.html 店 店 铺 n #:10 Question 铺 : : 学 学 习 ses cases fo What are two uses for VMware Tools? (Choose two.) 习 小 小 A. Time synchronization on 店 an NNTP server n with 店 66 66 B. Direct deployment of the Ariaa A Automation Config minion C. Share folders between ESXi hosts and guest OS file systems D. Ability to shut down a virtual machine remotely E. Support for unsupported network device drivers Answer: B D Explanation https://www.stevenbright.com/2022/03/deploy-salt-minions-automatically-using-vmware-tools/ Two use cases for VMware Tools are direct deployment of the Aria Automation Config minion and ability to shut down a virtual machine remotely. Direct deployment of the Aria Automation Config minion is a feature that allows the administrator to deploy a configuration management agent to a virtual machine using VMware Tools. This feature enables automation and orchestration of virtual machine configuration tasks. Ability to shut down a virtual machine remotely is a feature that allows the administrator to gracefully power off a virtual machine from the vSphere Client or other VMware products. This feature requires VMware Tools to be installed and running on the guest operating system. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vmwaretools.doc/GUID-28C39A00-74 店 店 铺 铺 Question #:11 : : 学 学 习 vSphere Lifecycle Manager to install patches to a vSphere An administrator iss configurin configuring 习 clu Sphere cluster. The cluster 小 (V 小 ccannot be runs workload virtual machines 店 the installation of the patches. achines (VMs) that are incompatible with vSphere vMotion, and (VM 店 d therefore live migrated between hosts during 66 uring 66 Which configuration in vSphere Lifecycle Manager will allow the administrator to reduce the downtime associated with the patching operation without migrating the VMs? A. Enable Distributed Power Management (DPM) and set the VM power state to the suspend to disk option B. Enable Quick Boot and set the VM power state to the suspend to disk option 6 of 68 VMware - 2V0-21.23 C. Enable vSphere High Availability (HA) admission control and set the VM power state to the suspend to memory option D. Enable Quick Boot and set the VM power state to the suspend to memory option Answer: D Explanation atio 店 铺 vmwa ager/GUID-0 er/GU : https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-lifecycle-manager/GUID-06A5D316-9452-4A5D-A5 s.vmware.co 学 习 The administrator should hould enable enab Quick Boot and set the VM power state to the suspend 小 end to memory mem me option, ministrator istrator to reduce the downtime associated with the patching operation which will allow the administrator 店eration wi without migrating the VMs. Quick Boot ott is a feature fe fea 66 that skips the hardware initialization phase during reboot, g host reb which reduces the system boot time. e SSuspend to memory is an option that preserves the state of thee V VMs in the host memory and restores them from memory after the reboot, which minimizes the VM downtime. These two features work together to optimize the remediation process and speed up the patching operation. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere-lifecycle-manager.doc/GUID-5AF3C64 Question #:12 Which step is completed during Stage 1 of the vCenter Server Appliance deployment? A. Join a vCenter Single Sign-On domain B. Create a new vCenter Single Sign-On domain C. Select the deployment size D. Configure SSH access Answer: C Explanation The minimum network throughput in Gb/s for vSAN using the Express Storage Architecture (ESA) is 1 Gb/s, 店 which is the minimum mi m 店 er, VM requirement for vSAN network adapters. However, VMw VMware recommends using 10 铺 铺 Gb/s or higher : igher fo better performance and reliability. References: for be : 学 mware.com 学 https://docs.vmware.com/en/VMware-vSphere/8.0/com.vmware.vsphere.vsan-planning.doc/GUID-9F1D4A3B-3 n-planning.d -planning 习 习 小 小 om/en/VMw m/en/VMw 店 店 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-1E39EF05-1DD7-4E9 UID-1E39EF D-1E39E 6 6 6F05 6 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-1E39EF05-1DD7-4E9 Mware- ware EF05- Question #:13 Refer to the exhibit. 7 of 68 VMware - 2V0-21.23 店 店 铺: 铺: 学习 学习 小 小店 店6 66 6 An administrator set up the following configuration: The distributed switch has three ESXi hosts, and each host has two 40 Gbps NICs. The amount of bandwidth reserved for virtual machine (VM) traffic is 6 Gbps. The administrator wants to guarantee that VMs in the Finance distributed port group can access 50 percent of the available reserved bandwidth for VM traffic. k Given this scenario, what should the size (in Gbps) of the Finance network resource pool be? A. 18 店 店 铺 铺 : : B. 80 学 学 习 习 C. 36 小 小 店 店 D. 120 66 66 Answer: A Explanation The size of the Finance network resource pool should be 50 percent of the reserved bandwidth for VM traffic, which is 6 Gbps x 3 hosts = 18 Gbps. 8 of 68 VMware - 2V0-21.23 References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.networking.doc/GUID-9F1D4E96-3392 https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-networking/GUID-29A96AB2-AEBF-420E-BDD6-4 Question #:14 店 店 铺 An administrator : nistrator is ttasked with configuring certificates for a VMware software-defined oftware-defin ftware-d data center (SDDC) based on the following ollowing re requirements: 学 习 小 All certificates should certificates trusted by the Enterprise Certificate Authority (CA). d use certifi certific CA). 店 The solution should minimize the ongoing management overhead of replacing certificates. hee on 66 Which three actions should the administrator take to ensure that the solution meets corporate policy? (Choose three.) A. Replace the VMware Certificate Authority (VMCA) certificate with a self-signed certificate generated from the B. Replace the machine SSL certificates with custom certificates generated from the Enterprise CA. C. Replace the machine SSL certificates with trusted certificates generated from the VMware Certificate Authority (VMCA). D. Replace the VMware Certificate Authority (VMCA) certificate with a custom certificate generated from the Enterprise CA. E. Replace the solution user certificates wife custom certificates generated from the Enterprise CA. F. Replace the solution user certificates with trusted certificates generated from the VMware Certificate Authority (VMCA). Answer: B D E 店 Explanation atio 店 铺 铺 : Option B, D and E are ccorrect because they allow the administrator to replace : cee the mach machine SSL certificates, 学 学 习 rtificate the VMware Certificatecate Au Aut Authority 习 ificates ates wit (VMCA) certificate and the solution user certificates with custom certificates generated from小 om the En 小 Enterprise CA, which will ensure that all certificates are trusted by the Enterprise CA and minimize 店 店 ongoing management overhead of replacing certificates. Option A iis incorrect izee the ong ongo 66 because replacing the VMCA certificat certificate ertifica with a self-signed certificate generated from the VMCA 66 CAA will nnot ensure that the certificate is trusted bby the Enterprise CA. Option C is incorrect because replacing theh machine SSL certificates with trusted certificates generated from the VMCA will not ensure that the certificates are trusted by the Enterprise CA. Option F is incorrect because replacing the solution user certificates with trusted certificates generated from the VMCA will not ensure that the certificates are trusted by the Enterprise CA. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-A2A4371A-B888-4 9 of 68 VMware - 2V0-21.23 Question #:15 An administrator is completing the configuration of a new vSphere cluster and has enabled vSphere High Availability (HA) and vSphere Distributed Resource Scheduler (DRS). After adding the ESXi hosts to the cluster, which networking information will the administrator be prompted to provide when using the Cluster Quickstart workflow? 店 A. vMotion Motion nnetworking netw 铺 : 学 B. Management networking ent network networki 习 小 C. vSAN networking 店 66 D. Virtual machine networking Answer: A Explanation https://core.vmware.com/resource/cluster-quickstart#section1 Question #:16 An administrator Is looking to deploy a new VMware vCenter Instance. The current environment consists of 75 hosts and is expected to grow up to 100 hosts over the next three years. Which deployment size should the administrator select? A. Medium B. Tiny C. Large D. Small al 店 店 Answer: D 铺 : 铺 : 学 学 习 习 Explanation 小 小 店 店 VMWare: Small environmentt (up 66 up to 1100 10 hosts or 1,000 virtual machines) Medium environment ent 66 nt (up to 400 hosts or 4,000 virtual machine) https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-88571D8A-46E1-464 The administrator should select the small deployment size for the new vCenter Server instance, which is suitable for an environment with up to 100 hosts or 1,000 virtual machines. The small deployment size has 4 vCPUs and 19 GB of memory, which can handle the current and expected growth of the environment. The 10 of 68 VMware - 2V0-21.23 other deployment sizes are either too large or too small for the environment. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-88571D8A-46E1-464 Question #:17 An administrator is tasked with adding two additional hosts into an existing production vSphere cluster to support the he nneed for additional capacity. 店 店 铺 铺 esx0 The vSphereere : cluster re clust currently c has four identically configured ESXi hosts (esxOT : esxOT esx02. esx03 and esx04) that 学 CPUs. The two new hosts (esx05 and esx06) are configured utilize Intel Skylake-based ylake-based lake-base 学 ide nfigured figured identically id in terms of memory and storagee to习 习 小 the existing exi exist hosts: but utilize Intel Ice Lake-based CPUs. 小 店 店 The administrator must ensuree that: 66 66 Any virtual machine migrates to any of the six ESXi hosts running in the cluster. There is no virtual machine downtime during the process of adding the new hosts. Which step should the administrator take to meet these requirements? A. Create a new vSphere cluster with Enhanced vMotion Compatibility (EVC) enabled and move all hosts into A' the new cluster B. Create a new vSphere cluster and move only three hosts into the new cluster. C. Configure Enhanced vMotion Compatibility (EVC) mode on the existing cluster and add the two new hosts into the cluster. D. Create a new vSphere cluster with vSphere High Availability (HA) enabled and move all hosts into the new cluster Answer: C Explanation The step that the administrator should take to meet these requirements is to configure Enhanced vMotion 店bility (EVC) bilit Compatibility ( 店 mode on the existing cluster and add the two new host hosts in into the cluster. EVC mode 铺 allows migration gration of virtual machines between different generations of CPUs 铺 Us by mmas masking unsupported : : 学 atures. tures. EVC mode can be enabled on an existing cluster without affecting powered-on processor features. 学 po p virtual machines. References: 习 nces: es: 习 小 om/en/VMw m/en/VMw 小 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-9F444D9B-44A doc/GUID-9 c/GUID-9 店 店 6 6 ere/201 e/20 6 l 6 https://blogs.vmware.com/vsphere/2019/06/enhanced-vmotion-compatibility-evc-explained.html Question #:18 An administrator is creating a content library to manage VM templates and ISO images. The administrator wants to password-protect the images and templates and share them with a remote site. 11 of 68 VMware - 2V0-21.23 Which two tasks must the administration perform when creating the content library? (Choose two.) A. Publish the local content library. B. Enable the security policy. C. Create a subscribed content library. 店 店 铺 elect an NFS D. Select N datastore. 铺 : : 学 uthenticatio thentica E. Enable authentication. 学 习 习 小 小 Answer: A E 店 店 66 66 Explanation To password-protect and share images and templates with a remote site, the administrator needs to publish the local content library, which makes it available for subscription by other vCenter Server instances; and enable authentication, which requires users to enter credentials when accessing the content library. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-FBEED81C-F9D Question #:19 An administrator wants to create virtual machine (VM) templates and store them in a content library. The administrator would like to use the content library to manage different versions of these templates so that reverting to an earlier version is an option. How should the administrator create these templates? A. Select a VM in the vCenter inventory. Clone the VM to the content library as a VM template type. B. Select a VM template in the vCenter inventory. Clone the template to the content library. 店 店 C. Export xport铺 V in the vCenter inventory to an OVF template. Import port a VM 铺 OVF ttemplate into the content rt the OV : : library. 学 学 习 习 D. Convert a VM to 小 o a template in the vCenter inventory. 小 店 店 66 library. Clone the template to the conten content onten 66 Answer: A Explanation Option A is correct because it allows the administrator to clone a VM to the content library as a VM template type, which can be used to create and manage different versions of these templates in the content library. 12 of 68 VMware - 2V0-21.23 Option B is incorrect because it requires the administrator to convert a VM to a template in the vCenter inventory first, which is an extra step. Option C is incorrect because it requires the administrator to export a VM to an OVF template and import it into the content library, which are extra steps. Option D is incorrect because it requires the administrator to convert a VM to a template in the vCenter inventory and clone it to the content library, which are extra steps. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-9F9E3F8C-0E2B 店 店 Question 铺 n #:20 铺 : An administrator orr has been notified that a number of hosts are not compliant with ith 学 company policy for time h the com comp 习 synchronization. 小 店 The relevant portion of the policy olicy states: licy state 66 All physical servers must synchronize time with an external time source that is accurate to the microsecond. Which step should the administrator take to ensure compliance with the policy? A. Ensure that each vCenter Server Appliance is configured to use a Network Time Protocol (NTP) source. B. Ensure that each ESXi host is configured to use a Precision Time Protocol (PTP) source. C. Ensure that each ESXi host is configured to use a Network Time Protocol (NTP) source. D. Ensure that each vCenter Server Appliance is configured to use a Precision Time Protocol (PTP) source. Answer: B Explanation To comply with the policy of synchronizing time with an external source that is accurate to the microsecond, the administrator needs to ensure that each ESXi host is configured to use a PTP source, which provides higher accuracy than NTP. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-F7DF1DD3-E3F 店 店 铺 Question #:21 铺 : : 学 学 VM 习 wi An administrator is tasked 习 VMware with migrating a single virtual machine (VM) from an existing xisting V vCenter to a secure environment where小corpo here d. 小 corporate security policy requires that all VMs be encrypted. ted. secure The sec secu 店 vCenter 店conta number of encrypted VMs. 6 environment consists of a dedicated edicated 6 vC instance with a 4-node vSphere cluster and already ready eady 66 contains contai a Which two steps must the administrator take to ensure the migration is a success? (Choose two.) A. Ensure that the source and destination vCenter instances share the same Key Management Server (KMS). B. Ensure that Encrypted vMotion Is turned off for the VM. 13 of 68 VMware - 2V0-21.23 C. Ensure that the VM is encrypted before attempting the migration. D. Ensure that the VM is powered off before attempting the migration. E. Ensure that the source and destination vCenter Servers have a different Key Management Server (KMS). Answer: A C 店 Explanation nation ation 铺 : 学 To ensure a successful ssful ful migration migrat 习 migrati of an encrypted VM to a secure environment, thee administra administrat administrator needs to 小 ensure that the source and d destinat destinati vCenter instances share the same Key Management destination ent 店 nt Server (K (KMS), which provides encryption keys both environments; and ensure that the VM is encrypted ys for bo bot erving rvin its encryption status during vMotion. the migration, which allows preserving 66 d before attempting att atte References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-C3FFBF62-D6BF-4 Question #:22 An administrator is investigating reports of users experiencing difficulties logging into a VMware vCenter instance using LDAP accounts. Which service should the administrator check as part of troubleshooting? A. vSphere Authentication Proxy Service B. Lookup Service C. Identity Management Service D. VMware Authentication Framework Daemon Answer: C 店 店 铺 Explanation nation 铺 : : 学 学 Identity Management ment 习 nt Servi Service 习 Servic is the service that handles authentication requests from m LDAP LDA accounts and other identity sourcess in小 n vCen vCenter Server. 小 店 店 References: 66 66 are F2E https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-FE1D5F2E-E3AC-4D Question #:23 An administrator is investigating user logon failures for a VMware vCenter instance 14 of 68 VMware - 2V0-21.23 Where can the administrator find log files containing information related to user login activities? A. On the vCenter Management Interface B. On the ESXi host using the Direct Console User Interface (®) C. On the vCenter Server Appliance 店 店 D. In 铺 vSphere Client when viewing the vCenter virtual machine n the vSp vSph 铺 : : Answer: C 学 学 习 习 小 小 Explanation 店 店 66 66 The administrator can find log filess co containing information related to user login activities on the vCenter Cen Server Appliance, which is a preconfigured Linux-based virtual machine that runs all vCenter Server services. The log files are located in /var/log/vmware/vmware-vpx/vpxd.log and /var/log/vmware/sso/ssoAdminServer.log directories. References: https://docs.vmware.com/en/VMware-vSphere/8.0/com.vmware.vsphere.troubleshooting.doc/GUID-5F9A7E49- Question #:24 An administrator plans to bring VMware vCenter offline in order to perform hardware mainte-nance on the host where the vCenter Server Appliance is running. Which vSphere feature must be configured to ensure that vCenter users experience minimal downtime? A. vSphere Distributed Resource Scheduler B. Hybrid Linked Mode C. vCenter Server High Availability D. Enhanced Linked Mode Answer: C 店 店 铺 Explanation nation 铺 : : 学 学 习 are.com/en/V.com/e 习 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.avail.doc/GUID-4A626993-A829-495C c/GUID-4A6 GUID-4 小 小 店 店 Question #:25 6 6 66 Which three vSphere features are still supported for Windows-based virtual machines when enabling vSphere's -virtualization-based security feature? (Choose three.) A. vSphere vMotion B. PCI passthrough 15 of 68 VMware - 2V0-21.23 C. vSphere High Availability (HA) D, vSphere Fault Tolerance D. vSphere Distributed Resources Scheduler (DRS) E. Hot Add of CPU or memory 店 铺 铺 Answer: A C E : : 学 Explanation 习 小 店 Option A, C and E are correct 66 ct because they indicate that vSphere features such as vMotion, High AvaAvai Availability (HA) and Distributed Resource Scheduler ched hed (DRS) are still supported for Windows-based virtual machi machines achi when enabling vSphere’s virtualization-based security feature, which provides enhanced protection for guest operating systems and applications against various attacks. Option B is incorrect because PCI passthrough is not supported for Windows-based virtual machines when enabling vSphere’s virtualization-based security feature, as this feature requires direct access to physical devices that cannot be shared or protected by hypervisor mechanisms. Option D is incorrect because Fault Tolerance is not supported for Windows-based virtual machines when enabling vSphere’s virtualization-based security feature, as this feature requires identical execution states for primary and secondary virtual machines that cannot be guaranteed by hypervisor mechanisms. Option F is incorrect because Hot Add of CPU or memory is not supported for Windows-based virtual machines when enabling vSphere’s virtualization-based security feature, as this feature requires dynamic changes to virtual hardware configuration that cannot be handled by hypervisor mechanisms. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-A2A4371A-B888-4 Question #:26 An administrator is tasked with deploying a new on-premises software-defined data center (SDDC) that will contain a total of eight VMware vCenter instances. The following requirements must be met: All vCenter instances should be visible in a single vSphere Client session. 店 店 铺 All vCenter enter inventory inven inv should be searchable from a single vSphere Client 铺 session. ent sessio session : : 学 学 Any administrator 习 ator must bbe able to complete operations on any vCenter instancee using 习 single set of sing a si sin credentials. 小 小 店 店 66 What should the administrator configur configure to meet these requirements? configu 66 A. Two Enhanced Linked Mode groups consisting of four vCenter instances each in a Single Sign-On domain. B. A single Hybrid Linked Mode group consisting of four vCenter instances each in a Single Sign-On domain. 16 of 68 VMware - 2V0-21.23 C. A single Enhanced Linked Mode group consisting of eight vCenter instances in one Single Sign-On domain. D. A single Hybrid Linked Mode group consisting of eight vCenter instances in one Single Sign-On domain. Answer: C 店 店 铺 Explanation nation 铺 : : 学 To meet the requirements quirements 学 uirements oof viewing and searching all vCenter instances and inventory nventory ventory wwit with a single vSphere 习 习 小 小 Client session and a single set of credentials, the administrator needs to configure a single Enh Enhan Enhanced Linked Mode group consisting off eight店 ight vCenter vC vCen instances in one Single Sign-On domain. 店 66 66 References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-39A8C7F4-8D8 https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-vcenter-installation/GUID-4394EA1C-0800-4A6A-A Question #:27 After adding a new vSphere ESXi host with identical hardware configuration to an existing vSphere cluster, which task would an administrator complete prior to checking the compliance with an existing host profile? A. Attach the host profile to the new host B. Duplicate the host profile C. Copy the host settings from the new host D. Import the host profile Answer: A Explanation The task店 k that sh should be completed prior to checking the compliance with 店 h an ex exi existing host profile is to attach 铺 铺 the host profile : the new host, which allows applying the configuration rofile tto th : template of the reference host to the n templat new host. 学 学 习 习 小 小 References: 店 店 66 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.hostprofiles.doc/GUID-0E5BF330-A76 n/VMware-v VMware- https://www.nakivo.com/blog/how-to-create-and-set-up-vmware-vsphere-host-profiles/ ow-to- w-to GUID-0E5B ID-0E5B 66 Question #:28 An administrator creates a new corporate virtual machine (VM) template every month to include all of the latest patches. The administrator needs to ensure that the new VM template is synchronized from the primary data center site (London) to two secondary data center sites (Tokyo and New York). The administrator is 17 of 68 VMware - 2V0-21.23 aware that datastore space is limited within the secondary data center sites. The administrator needs to ensure that the VM template is available in the secondary sites the first time a new virtual machine is requested. Which four steps should the administrator take to meet these requirements? (Choose four.) A. Create a new published content library at the primary site. B. Add the virtual machine template to the subscribed content library. d th 店 铺 C. Create ate te a new published content library in each secondary site. ne pu : 学 习 D. Create a new subscribed ccontent library in each secondary site. 小 店 E. Configure the subscribed ed content conten library to download content when needed. 66 F. Configure each subscribed content library to download content immediately. G. Add the virtual machine template to the published content library. Answer: A D E G Explanation To meet the requirements of synchronizing and protecting images and templates with limited datastore space, the administrator needs to create a new published content library at the primary site, which makes it available for subscription by other vCenter Server instances; create a new subscribed content library in each secondary site, which allows accessing content from a published content library; configure the subscribed content library to download content when needed, which saves datastore space by only downloading content on demand; and add the virtual machine template to the published content library, which makes it available for other hosts to use. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-FBEED81C-F9D Question #:29 店 An administrator inistrat nistr 店 is preparing to perform an update to vSphere clusters that hat aare running vSAN. The 铺 administrator trator 铺 wants to ensure that the following requirements are met ass part of the update: ator wa : : 学ster习 学 All hosts in the cluster are updated up with the same software. 习 小 小 The firmware versions on the店 店 66are updated hosts ar 66 The new software versions are checked for compliance against the vSAN Hardware Compatibility List. Which three steps should the administrator take to meet these requirements? (Choose three.) A. Configure vSphere Lifecycle Manager with an image for the cluster. B. Register the vendor hardware management system as a vCenter Server extension. 18 of 68 VMware - 2V0-21.23 C. Download the firmware updates from the VMware website D. Download the firmware updates from the vendor website. E. Run a hardware compatibility check using vSphere Lifecycle Manager F. Configure vSphere Lifecycle Manager with a baseline for the cluster. 店 店 铺 铺 Answer: A B E : : 学 学 Explanation 习 习 小 小 店 店runni The administrator should take vSAN: 6 ke these 6three th thr steps to perform an update to vSphere clusters thatt are 66 runnin running Configure vSphere Lifecycle Manager with an image for the cluster, which allows the administrator to specify the desired ESXi version and firmware for the hosts in the cluster. Register the vendor hardware management system as a vCenter Server extension, which allows the administrator to update the firmware on the hosts using vSphere Lifecycle Manager. The vendor hardware management system can also provide the firmware updates to vSphere Lifecycle Manager, so there is no need to download them from the vendor website separately. Run a hardware compatibility check using vSphere Lifecycle Manager, which verifies that the new software and firmware versions are compatible with the vSAN Hardware Compatibility List. Question #:30 An administrator is responsible for performing maintenance tasks on a vSphere cluster. The cluster has the following configuration:. Identically configured vSphere ESXi hosts (esx01, esx02, esx03 and esx04) All workloads are deployed into a single VMFS datastore provided by the external storage array 店 vSpheree H High Hig Availability (HA) has not been enabled 店 铺 铺 : RResource Scheduler (DRS) has not been enabled vSphere Distributed stributed : 学 学 习 习 小 Currently, a critical production duction application a workload (VM1) is running on esx01. 小 店 店 Given this scenario, which two 66 are required to ensure VM1 continues to run when esx01 o actions 1 is66 01 placed into pla plac maintenance mode? (Choose two.) A. Fully automated DRS must be enabled on the cluster so that VM1 will be automatically migrated to another host within the cluster when esx01 is placed into maintenance mode. B. VM1 must be manually shut down and cold migrated to another host within the cluster using vSphere vMotion before esx01 is placed into maintenance mode. 19 of 68 VMware - 2V0-21.23 C. vSphere HA must be enabled on the cluster so that VM1 will be automatically migrated to another host within the cluster when esx01 is placed into maintenance mode. D. VM1 must be manually live migrated to another host within the cluster using vSphere vMotion before esx01 is placed into maintenance mode. E. VM1 must be manually migrated to another host within the cluster using vSphere Storage vMotion 店 before ore esx01 is placed into maintenance mode. fore 店 铺 铺 Answer: A D : : 学 学 习 习 Explanation 小 小 店 店 Two actions that are required to 66 66 o ensure VM1 continues to run when esx01 is placed into maintenance enance nance mode m are enabling fully automated DRS on the cluster, which allows balancing the workload across hosts and migrating VMs without user intervention; and manually live migrating VM1 to another host within the cluster using vSphere vMotion, which allows moving a running VM without downtime. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.resmgmt.doc/GUID-F01B2F12-C5BB- https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-F01B2F12-C5B Question #:31 An administrator remotely deploys VMware ESXi using an out of band management connection and now needs to complete the configuration of the management network so that the host is accessible through the vSphere Host Client. The following information has been provided to complete the configuration: Host FQDN esxi01corp.local Management VLAN ID: 10 DHCP: No Management IP Address: 172.16.10.101/24 店 Management ement IP Gateway: 172.16.10.1 店 铺 铺 : :. Corporate DNS 学 172 16.10.5, 172.16.10..6 NS Server Servers: 学 习 习 call 小 小 DNS Domain: corp.local 店 店 66 66 In addition, all host configurations must also meet the following requirements: nss mu The management network must use only IPv4 network protocols. The management network must be fault tolerant Which four high level tasks should the administrator complete in the Direct Console User Interface (DCUI) in order to meet the requirements and successfully log into the vSphere Host Client? (Choose four.) 20 of 68 VMware - 2V0-21.23 A. Set the value of the VMware ESXi Management Network VLAN ID to 10 B. Configure at least two network adapters for the VMware ESXi Management Network C. Update the VMware ESXi Management Network IPv4 configuration to use a static IPv4 address D. Create eat a DNS A Record for the VMware ESXi host on the corporate te DNS servers 店 店 铺 铺 E. Disable sable able IPv: for the VMware ESXi Management Network IPv6 fo : 学 学 习 F. Restore the original Management iginal Ma vSphere Standard Switch. 习 Man 小 小 店 店 sservers G. Update the VMware ESXi 66 Management SXi Mana Network DNS configuration to use the corporate rate 66 ate DNS for ' names resolution Answer: A B C D Question #:32 Which feature would allow for the non-disruptive migration of a virtual machine between two clusters in a single VMware vCenter instance? A. vSphere vMotion B. Cross vCenter Migration C. vSphere Storage vMotion D. vSphere Fault Tolerance Answer: A Explanation 店 vSphere vMoti vMo 店 vMotion allows for the non-disruptive migration of a virtual machine achine chin between two clusters in a single 铺 vCenter instance 铺 instance, as long as there is shared storage and network connectivity tivity between betwe the clusters. bet : : 学 学 References: 习 习 小 om/en/VMw m/en/VMw doc/GUID-3 c/GUID-3 小 https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vcenterhost.doc/GUID-3B41119A-127 店 店 vMotion is used to move the VM 6 6 66bo M to a ddifferent cluster within the same vCenter. This only workss if both bot clusters share the same storage. If they don't you also need to perform a Storage vMotion. Cross vCenter Migration is only used to migrate to a different vCenter. Question #:33 f\n administrator needs to provide encryption for workloads within an existing vSphere cluster. The following 21 of 68 VMware - 2V0-21.23 requirements must be met: Workloads should be encrypted at rest. Encrypted workloads must automatically be encrypted during transit. Encryption should not require any specific hardware. 店 店 hould 铺 ould the administrator configure to meet these requirements? What should 铺 : : A. Encrypted ed 学 vvMotion d vSphere 学 习 习 小 小 B. 店 IInterface (UEFI) Secure Boot Unified Extensiblee Firmware irmwar 店 66 66 C. Host Encryption D. VM Encryption Answer: D Explanation The feature that should be configured to provide encryption for workloads within an existing vSphere cluster without requiring any specific hardware is VM Encryption, which allows encrypting VMs at rest and during vMotion. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-F8F105EC-A6EA-4 Question #:34 Refer to the exhibit. 店 店 铺: 铺: 学习 学习 小店 小店 66 66 22 of 68 VMware - 2V0-21.23 After updating a predefined alarm on VMware vCenter, an administrator enables email notifications as shown in the attached alarm; however, notifications are NOT being sent. Where must the mail server settings be configured by the administrator to resolve this issue? A. In the ESXi host system config 店 B. In the ala alarm rule definitions 店 铺 铺 : set : 学settings C. In the vCenter Center setti in the vSphere Client 学 习 习 小 IInterface 小 店 D. in the vCenter Management anagement nagement 店 Answer: C 66 66 Explanation Option C is correct because it allows the administrator to configure the mail server settings in the vCenter settings in the vSphere Client, which are required for sending email notifications for alarms. Option A is incorrect because it configures the mail server settings on an ESXi host system, which are not used for sending email notifications for alarms. Option B is incorrect because it configures the alarm rule definitions, which are already enabled in the exhibit. Option D is incorrect because it configures the vCenter Management Interface, which is not used for sending email notifications for alarms. References: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.monitoring.doc/GUID-A2A4371A-B88 Question #:35 An administrator needs better performance and near-zero CPU utilization from the ESXI hosts for networking functions and processing. The administrator creates a new vSphere Distributed Switch and enables network offloads compatibility. Which solution would help achieve this goal? A. VSphere Distributed Services Engine 店 B. Data Processing ataa Pr P Units (DPUs) 店 铺 铺 C. vSphere ere : I/O Control re Networ Network : 学 学 习 习 小vver D. Universal Passthrough through rough version 2 小 店 店 Answer: B 66 66 Explanation The solution that would help achieve better performance and near-zero CPU utilization from the ESXi hosts for networking functions and processing is Data Processing Units (DPUs), which are specialized processors that offload network services from the CPU and provide hardware acceleration. 23 of 68 VMware - 2V0-21.23 https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-networking/GUID-41AB1101-D943-490A-BF1A-E5 Question #:36 An administrator has configured Storage I/O Control (SIOC) on a Virtual Machine File System (VMFS) datastore. The datastore asto supports 30,000 IOPS 店 店 O铺 Storage I/O /O : hhas been set to manual Cont Control 铺 : 学 学 oll is习 习 Storage I/O Control 小 triggered triggere when latency hits 30 ms trigger 小 店mach 店 The datastore contains 3 virtual 66 (VMs) ual machines machi 66 A gold tier VM A silver tier VM A bronze tier VM Assuming the datastore latency does not exceed 29ms, what is the maximum number of IOPS the bronze tier VM is entitled to? A. 30,000 B. 20,000 C. 10.000 D. 5,000 Answer: A Explanation The bronze tier VM is entitled to 30,000 IOPS, which is the maximum number of IOPS that the datastore 店 supports.. Sto Stora Storage I/O Control (SIOC) does not limit the IOPS of any VM 店 M un unles unless the datastore latency exceeds 铺 shold, old, wh the threshold, 铺 which is 30 ms in this case. Therefore, as long as the datastore store ore late latency is below 29 ms, the : : bronze tier VM 学 M can use uup to 30,000 IOPS. References: 学 习 are.com/en/V e.com/e 习