Which two steps should an administrator take to allow HTTPS access to a specific virtual machine (VM) through the public Internet for VMware Cloud on AWS? (Choose two.)
Correct Answer:
AD
To allow HTTPS access to a specific VM through the public Internet for VMware Cloud on AWS, the administrator must first create a custom service called HTTPS using port 443. They must then request a public IP address in the VMware Cloud console.
In VMware Cloud, who is responsible for the encryption of virtual machines?
Correct Answer:
B
Customer responsibility “Security in the Cloud” – Customers are responsible for the deployment and ongoing configuration of their SDDC, virtual machines, and data that reside therein. In addition to determining the network firewall and VPN configuration, customers are responsible for managing virtual machines (including in guest security and encryption) and using VMware Cloud on AWS User Roles and Permissions along with vCenter Roles and Permissions to apply the appropriate controls for users.
The responsibility for the encryption of virtual machines in VMware Cloud lies with the customer. The customer is responsible for configuring and managing any encryption or security related settings and configurations in the virtual machines, such as disk encryption or the configuration of security protocols. The VMware Cloud Provider Partner (VCPP) is responsible for the overall security of the cloud
environment [1][2], including the encryption of data at rest, but the customer is responsible for configuring
and managing the encryption settings within their virtual machines.
Reference: https://docs.vmware.com/en/VMware-Cloud-on-AWS/services/com.vmware.vmc-aws.encryption/
Which three items should be considered when performing a hot migration of a virtual machine (VM)? (Choose three.)
Correct Answer:
CEF
For the source and destination host to have shared access to the storage that contains the VM, they must be able to access the same datastore. This requires that the datastore be available to both hosts and that the datastore has the same name on both hosts.
The status of VMware Tools on the VM should also be checked before performing a hot migration. VMware Tools is a suite of utilities that enhances the performance of a virtual machine's guest operating system and improves the management of the virtual machine. If VMware Tools is not installed or not up to date, the hot migration may fail.
Finally, the status of the guest operating system in the VM should also be checked before performing a hot migration. The guest operating system should be up and running and not in a suspended state. If the guest operating system is in a suspended state, the hot migration may fail.
The CPU instruction set required by the VM and the vGPU configuration of the VM are not items to consider when performing a hot migration of a virtual machine. The source and destination host management network IP address families do not need to match for the hot migration to be successful.
References:
[1] https://docs.vmware.com/en/VMware-vSphere/6.7/com.vmware.vsphere.vm_admin.doc/GUID-B2B7F78A
A cloud administrator requires an external secure connection into their data center to use Border Gateway Protocol (BGP). Which connection type can they use to connect to an Instance of VMware Cloud?
Correct Answer:
D
https://docs.vmware.com/en/VMware-Cloud-Disaster-Recovery/services/vmware-cloud-dr-security-best-practic A cloud administrator requires an external secure connection into their data center to use Border Gateway Protocol (BGP). The best connection type to use for this purpose is a Route-based virtual private network (VPN). This type of VPN is secure, as it uses encryption and authentication to protect the data transmitted over the connection. Additionally, it allows for the configuration of BGP to ensure that the data traffic is routed to the desired destination.
PREPARING FOR VMWARE CLOUD ON AWS
https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/vmc-aws/preparing-for-vmwar
Publishing Applications with VMware Horizon 7 https://vcdx.vmware.com/content/dam/digitalmarketing/vmware/ru/pdf/techpaper/vmware-horizon-7-application What is Network Virtualization? | VMware Glossary
https://www.vmware.com/topics/glossary/content/network-virtualization.html
Which two steps does a cloud administrator need to take when protecting a VMware Cloud on AWS
software-defined data center (SDDC) with VMware site Recovery? (Choose Two.)
Correct Answer:
AC
A cloud administrator needs to deploy the vSphere Replication virtual appliance and the Site Recovery manager virtual appliance when protecting a VMware Cloud on AWS software-defined data center (SDDC) with VMware Site Recovery.
The vSphere Replication virtual appliance is responsible for replicating the virtual machines from the source to the target site. Site Recovery Manager virtual appliance acts as the central management and orchestration platform for the entire disaster recovery process.
