Paul Bachan
Quiz by , created more than 1 year ago

vCP VMware vSphere Certification Quiz on Chapter 7. vSphere Security - Quiz, created by Paul Bachan on 17/06/2022.

102
0
0
Paul Bachan
Created by Paul Bachan over 2 years ago
Close

Chapter 7. vSphere Security - Quiz

Question 1 of 10

1

1.) You are preparing to import certificates for your vSphere environment. Which of the following is not a requirement?

Select one of the following:

  • A.) x509 Version 3

  • B.) PKCS8 and PKCS1 PEM format

  • C.) Digital signature and key encipherment keys

  • D.) 1024- to 16,384-bit keys

Explanation

Question 2 of 10

1

2.) You are making plans for ESXi host certificates. Which of the following is not a valid certificate mode?

Select one of the following:

  • A.) VMware Endpoint Certificate Store Mode

  • B.) VMware Certificate Authority Mode

  • C.) Custom Certificate Authority Mode

  • D.) Thumbprint Mode

Explanation

Question 3 of 10

1

3.) You are preparing to apply permissions in vCenter Server. Which of the following is a system role?

Select one of the following:

  • A.) Read-only

  • B.) Virtual machine user

  • C.) Datastore consumer

  • D.) Content library administrator

Explanation

Question 4 of 10

1

4.) You are configuring permissions in vCenter Server. Which privilege is required for a user to use Storage vMotion to migrate a virtual machine?

Select one of the following:

  • A.) Resource.Migrate Powered On Virtual Machine

  • B.) Resource.Migrate Powered Off Virtual Machine

  • C.) Resource.Assign Virtual Machine to Resource Pool on the Cluster

  • D.) Resource.Assign Virtual Machine to Resource Pool on the VM Folder

Explanation

Question 5 of 10

1

5. You are hardening your ESXi hosts. Which of the following is true concerning normal lockdown mode?

Select one of the following:

  • A.) All users with administrator privileges on the host can access the DCUI.

  • B.) All users in the Exception Users list can access the DCUI.

  • C.) No one can access the DCUI.

  • D.) Users identified in the host’s DCUI.Access advanced option can access the DCUI.

Explanation

Question 6 of 10

1

6.) You are creating user accounts in the vCenter SSO domain. With default settings, which of the following is a valid password?

Select one of the following:

  • A.) VMware1!

  • B.) VMworld!

  • C.) VMwareR0cks

  • D.) VMwarerocks!!

Explanation

Question 7 of 10

1

7.) You are configuring IPsec on your ESXi hosts. Which of the following commands can you use to list the available security associations on an ESXi host?

Select one of the following:

  • A.) esxcli network ipsec sa list

  • B.) esxcli network ip ipsec sa list

  • C.) esxcli network ip ipsec list

  • D.) esxcli network ip sa list

Explanation

Question 8 of 10

1

8.) You want to migrate virtual machines across vCenter instances. Which of the following statements is true concerning vMotion migration across vCenter Server instances?

Select one of the following:

  • A.) For encrypted vMotion migration, you can use the vSphere Client.

  • B.) For encrypted vMotion migration, you must use the vSphere APIs.

  • C.) vMotion migration of encrypted virtual machines is not supported.

  • D.) Encrypted vMotion migration of non-encrypted virtual machines is not supported.

Explanation

Question 9 of 10

1

9.) You are hardening virtual machines in your vSphere 7 environment. Which of the following options can be set to TRUE to disable an unexposed feature?

Select one of the following:

  • A.) tools.guestlib.enableHostInfo

  • B.) tools.setInfo.sizeLimit

  • C.) vmx.log.keepOld

  • D.) isolation.tools.ghi.launchmenu.change

Explanation

Question 10 of 10

1

10.) You want to use microsegmentation to protect the applications and data in your vSphere environment. What should you implement?

Select one of the following:

  • A.) VMware AppDefense

  • B.) VMware NSX

  • C.) VMware vRealize Automation

  • D.) VMware vRealize Log Insight

Explanation