- (Topic 2)
A cloud administrator is building a new VM for machine-learning training. The developer requesting the VM has stated that the machine will need a full GPU dedicated to it.
Which of the following configuration options would BEST meet this requirement?
Correct Answer:
C
Reference: https://blogs.vmware.com/apps/2018/09/using-gpus-with-virtual-machines-on- vsphere-part-2-vmdirectpath-i-o.html
Passthrough GPU is a configuration option that allows a VM to access a physical GPU directly without any virtualization layer or sharing mechanism. This provides the VM with full and exclusive access to the GPU resources and performance. Passthrough GPU is suitable for applications that require intensive graphics processing or machine learning training.
- (Topic 3)
A web application has been configured to use autoscaling for provisioning and deprovisioning more VMs according to the workload. The systems administrator deployed a new CI/CD tool to automate new releases of the web application. During the night, a script was deployed and configured to be executed by the VMs during bootstrapping. Now. the autoscaling configuration is creating a new VM ever five minutes. Which of the following actions will MOS I like y resolve the issue?
Correct Answer:
B
The best way to resolve the issue where the autoscaling configuration is creating a new VM every five minutes after deploying a new CI/CD tool to automate new releases of the web application and configuring a script to be executed by the VMs during bootstrapping is to debug the script and redeploy it. Debugging the script means finding and fixing any errors or bugs in the code or logic of the script that may cause unexpected or undesired behavior, such as triggering the autoscaling condition or failing to complete the bootstrapping process. Redeploying the script means updating or replacing the existing script with the corrected or improved version of the script. Reference: [CompTIA Cloud+ Certification Exam Objectives], Domain 4.0 Troubleshooting, Objective 4.5 Given a scenario, troubleshoot automation/orchestration issues.
- (Topic 4)
A systems administrator is implementing a new file storage service that has been deployed in the company's private cloud instance. The key requirement is fast read/write times for the targeted users, and the budget for this project is not a concern. Which of the following storage types should the administrator deploy?
Correct Answer:
B
The best storage type to deploy for the new file storage service is NVMe. NVMe stands for Non-Volatile Memory Express, and it is a protocol that allows faster access to data stored on solid state drives (SSDs). NVMe can deliver high performance, low latency, and parallelism for the file storage service. NVMe can also support fast read/write times for the targeted users, which is the key requirement for the project. Since the budget for the project is not a concern, NVMe can be a suitable choice for the file storage service. References: CompTIA Cloud+ CV0-003 Certification Study Guide, Chapter 4, Objective 4.1: Given a scenario, implement cloud storage solutions.
- (Topic 4)
A systems administrator needs to connect the companys network to a public cloud services provider. Which of the following will BEST ensure encryption in transit for data transfers?
Correct Answer:
B
The answer is A. SAML. SAML (Security Assertion Markup Language) is a standard for exchanging authentication and authorization data between different parties, such as a user and a service provider. In a federated cluster, SAML can be used to enable single sign-on (SSO) for users across multiple clusters or cloud providers. SAML relies on the exchange of XML-based assertions that contain information about the user’s identity, attributes, and entitlements. If the users’ API access tokens have become invalid, it could be because the SAML assertions have expired, been revoked, or corrupted. The administrator should check the SAML configuration and logs to determine the cause of this issue.
Some possible sources of information about SAML and federated clusters are:
✑ Authenticating | Kubernetes: This page provides an overview of authenticating users in Kubernetes, including using SAML for federated identity.
✑ Authenticating to the Kubernetes API server - Google Cloud: This page explains how to authenticate to the Kubernetes API server on Google Cloud, including using SAML for federated identity with Google Cloud Identity Platform.
✑ Error 403 User not authorized when trying to access Azure Databricks API through Active Directory - Stack Overflow: This page discusses a similar issue of users getting an error when trying to access Azure Databricks API using SAML and Active Directory.
- (Topic 4)
An environment has a dual-stack infrastructure in an active-active configuration in two separate data centers. Which of the following best describes replication between the two sites?
Correct Answer:
D
A dual-stack infrastructure is a network that supports both IPv4 and IPv6 protocols. An active-active configuration is a high-availability cluster that distributes workloads across two or more nodes that are running the same service simultaneously. Replication between the two sites means that data is copied from one site to another to ensure consistency and redundancy. Data synchronization is the process of ensuring that data is identical across multiple locations. Therefore, data synchronization in real time means that data is replicated as soon as it changes on either site, without any delay or lag. References: Active-Active vs. Active-Passive High-Availability Clustering, Dual-stack IPv6 architectures for AWS and hybrid networks – Part 2, Understanding Dual Stacking of IPv4 and IPv6 Unicast Addresses
