ExamGecko
Search Search Login
Home Home / VMware / 5V0-31.22
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An architect needs to create a VMware Cloud Foundation (VCF) VI Workload Domain design with these requirements: * Design blueprint needs to be repeatable for additional regions * Multiple availability zones * Seven nodes per availability zone to host the workloads * vSAN storage will be used What is the maximum accepted latency supported by vSAN between the two availability zones'?
Which type of storage entity is used as the backing disks for persistent volumes in vSphere with Tanzu?
An architect is designing overlay networking and routing for two VMware Cloud Foundation VI workload domains The following requirements must be met in the design: * NSX-T Bare Metal Edge nodes are required to satisfy a requirement for extremely low latency. * The costs must be kept to a minimum. Which design meets these customer requirements?
A vSphere administrator is tasked with enabling Workload Management on a VMware Cloud Foundation Workload Domain. Which three components are configured as part of the Supervisor Cluster control plane after this task is completed? (Choose three.)
What is the correct upgrade order for VMware Cloud Foundation (VCF) components for a VI workload domain with a stretched vSAN cluster?
An architect is designing networking for a developer-ready infrastructure on VMware Cloud Foundation. During the discussion with the network team, a question comes up about the use of a routable CIDR range. Which item uses this type of range?
An administrator is tasked with creating a new VMware Cloud Foundation VI Workload Domain. Which statement is correct when commissioning new ESXi hosts to the SDDC Manager inventory?
An administrator is tasked with deploying a new VI Workload Domain with VMFS on FC storage. Which type of network pool must the hosts be associated with while adding them to VCF inventory?
Which vSphere Lifecycle Manager (LCM) function is supported in VMware Cloud Foundation (VCF)?
An administrator is tasked with deploying an additional cluster within VI Workload Domain which has been created with vSAN as a principal storage Which types of principal storage may the administrator configure during this process?

Question 38 - 5V0-31.22 discussion

Report
Export

A VMware Cloud Foundation administrator has been tasked with replacing self-signed certificates with those signed by a third-party Certificate Authority. A security policy disallows the integration and use of Microsoft Active Directory Certificate Sen/ices and prefers an external provider.

Which two steps must be taken in order to configure these certificates? (Choose two.)

A.
Generate Certificate Signing Requests from SDDC Manager.
Answers
A.
Generate Certificate Signing Requests from SDDC Manager.
B.
Ensure that the external provider has Administrator rights in vCenter.
Answers
B.
Ensure that the external provider has Administrator rights in vCenter.
C.
Create and package the certificates in a domain_name.tar.gz file
Answers
C.
Create and package the certificates in a domain_name.tar.gz file
D.
Use the sddcmanager-ssl-util.sh utility to list and delete existing certificates.
Answers
D.
Use the sddcmanager-ssl-util.sh utility to list and delete existing certificates.
E.
Generate public-private key pairs using the external provider.
Answers
E.
Generate public-private key pairs using the external provider.
Suggested answer: A, C

Explanation:

A) Generate Certificate Signing Requests from SDDC Manager - In order to replace the self-signed certificates with third-party signed certificates, the Certificate Signing Requests (CSRs) need to be generated. This can be done from the SDDC Manager UI.

C) Create and package the certificates in a domain_name.tar.gz file - After the CSRs are generated, they can be used to obtain third-party signed certificates from a certificate authority. Once the certificates are obtained, they need to be packaged in a domain_name.tar.gz file and uploaded to SDDC Manager.

Generate Certificate Signing Requests (CSRs) from SDDC Manager for each component that requires a certificate1.You can do this from the SDDC Manager UI or using an API call1.

Have the CSRs signed by a third-party Certificate Authority of your choice1. You can use any external provider that meets your security policy requirements.

Create and package the certificates in a domain_name.tar.gz file according to the naming convention and folder structure specified by SDDC Manager1. You can use any compression tool that supports gzip format.

Upload and install the certificates using SDDC Manager UI or API1. You can also verify and troubleshoot the certificate installation using SDDC Manager.

https://docs.vmware.com/en/VMware-Cloud-Foundation/4.5/vcf-admin/GUID-80431626-B9CD-4F21-B681-A8F5024D2375.html

Show Answer
asked 16/09/2024
Charles Brono
45 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms