This page was exported from Braindump2go Free Exam Dumps with PDF and VCE Collection [ https://www.mcitpdump.com ] Export date:Fri Mar 29 15:25:54 2024 / +0000 GMT ___________________________________________________ Title: [2017-Jul.-New]Exam 2V0-621D Dumps VCE and PDF 256Q Free Offered by Braindump2go[Q21-Q30] --------------------------------------------------- 2017/July VMware 2V0-621D Exam Dumps with PDF and VCE New Updated in www.Braindump2go.com  Today!100% 2V0-621D Real Exam Questions! 100% 2V0-621D Exam Pass Guaranteed! 1.|2017 New 2V0-621D Exam Dumps (PDF & VCE) 256Q&As Download:https://www.braindump2go.com/2v0-621d.html 2.|2017 New 2V0-621D Exam Questions & Answers Download:https://drive.google.com/drive/folders/0B75b5xYLjSSNN0M4cTJyOXZySk0?usp=sharing QUESTION 21To reduce the attack vectors for a virtual machine, which two settings should an administrator set to false? (Choose two.) A.    ideX:Y.presentB.    serial.presentC.    ideX:Y.enabledD.    serial.enabled Answer: ABReference: http://jackiechen.org/2012/10/05/vsphere-5-0-security-hardening-recommended-vm-settings-configure-script/ QUESTION 22Which two groups of settings should be reviewed when attempting to increase the security of virtual machines (VMs)? (Choose two.) A.    Disable hardware devicesB.    Disable unexposed featuresC.    Disable VMatools devicesD.    Disable VM Template features Answer: ABExplanation:Make sure you review hardware devices and disable the unnecessary ones. Also disable unexposed features before increasing virtual machines security. QUESTION 23Which password meets ESXi 6.x host password requirements? A.    8kMVnn2x!B.    zNgtnJBA2C.    Nvgt34kn44D.    !b74wr Answer: AExplanation:A valid password requires a mix of upper and lower case letters, digits, and other characters. You can use a 7-character long password with characters from at least three of these four classes, or a 6-character long password containing characters from all the classes. A password that begins with an upper case letter and ends with a numerical digit does not count towards the number of character classes used. It is recommended that the password does not contain the username.A passphrase requires at least 3 words, can be 8 to 40 characters long, and must contain enough different characters.Reference:http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1012033 QUESTION 24An administrator would like to use a passphrase for their ESXi 6.x hosts which has these characteristics:- Minimum of 21 characters- Minimum of 2 wordsWhich advanced options must be set to allow this passphrase configuration to be used? A.    retry=3 min=disabled, disabled, 7, 21, 7 passphrase=2B.    retry=3 min=disabled, disabled, 21, 7, 7 passphrase=2C.    retry=3 min=disabled, disabled, 2, 21, 7D.    retry=3 min=disabled, disabled, 21, 21, 2 Answer: BExplanation:To force a specific password complexity and disable all others, replace the number with the word with disabled. For example, to force passwords containing characters from all four-character classes: password requisite /lib/security/$ISA/pam_passwdqc.so retry=3 min= disabled,disabled,disabled,disabled,7Reference:http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1012033 QUESTION 25Which Advanced Setting should be created for the vCenter Server to change the expiration policy of the vpxuser password? A.    VimPasswordExpirationInDaysB.    VimExpirationPasswordDaysC.    VimPassExpirationInDaysD.    VimPasswordRefreshDays Answer: AExplanation:vCenter Server creates the vpxuser account on each ESX/ESXi host that it manages. The password for each vpxuser account is auto-generated when an ESX/ESXi host is added. The password is updated by default every 30 days.To modify default password settings:Connect vSphere Client to vCenter Server.Click Administration > vCenter Server Settings > Advanced Settings. Scroll to the parameter VirtualCenter.VimPasswordExpirationInDays and change the value from the default.Reference:http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1016736 QUESTION 26An administrator has been instructed to secure existing virtual machines in vCenter Server.Which two actions should the administrator take to secure these virtual machines? (Choose two.) A.    Disable native remote management servicesB.    Restrict Remote Console accessC.    Use Independent Non-Persistent virtual disksD.    Prevent use of Independent Non-Persistent virtual disks Answer: BDReference: http://www.vmware.com/files/pdf/techpaper/VMW-TWP-vSPHR-SECRTY-HRDNG-USLET-101-WEB-1.pdf (page 11, see the tables) QUESTION 27An administrator has recently audited the environment and found numerous virtual machines with sensitive data written to the configuration files.To prevent this in the future, which advanced parameter should be applied to the virtual machines? A.    isolation.tools.setinfo.disable = trueB.    isolation.tools.setinfo.enable = trueC.    isolation.tools.setinfo.disable = falseD.    isolation.tools.setinfo.enable = false Answer: AExplanation:It is configured on a per-VM basis. You can increase the guest operating system variable memory limit if large amounts of custom information are being stored in the configuration file. You can also prevent guests from writing any name-value pairs to the configuration file. To do so, use the following setting, and set it to 'true'. QUESTION 28Which two statements are correct regarding vSphere certificates? (Choose two.) A.    ESXi host upgrades do not preserve the SSL certificate and reissue one from the VMware Certificate Authority (VMCA).B.    ESXi host upgrades preserve the existing SSL certificate.C.    ESXi hosts have assigned SSL certificates from the VMware Certificate Authority (VMCA) during install.D.    ESXi hosts have self-signed SSL certificates by default. Answer: BCExplanation:Of course, ESXi host upgrades preserve existing SSL certificate and it also have assigned SSL certificates from VMCA during the installation process. QUESTION 29Which three options are available for replacing vCenter Server Security Certificates? (Choose three.) A.    Replace with Certificates signed by the VMware Certificate Authority.B.    Make VMware Certificate Authority an Intermediate Certificate Authority.C.    Do not use VMware Certificate Authority, provision your own Certificates.D.    Use SSL Thumbprint mode.E.    Replace all VMware Certificate Authority issued Certificates with self-signed Certificates. Answer: ABCExplanation:There are three options for replace vCenter server security certificates. You can replace it with certificates signed by VMware certificate authority; you can make the VMCA an intermediate certificate authority. Likewise, you can provision your own certificates. QUESTION 30When attempting to log in with the vSphere Web Client, users have reported the error:Incorrect Username/PasswordThe administrator has configured the Platform Services Controller Identity Source as:- Type. Active Directory as an LDAP Server- Domain: vmware.com- Alias: VMWARE- Default Domain: YesWhich two statements would explain why users cannot login to the vSphere Web Client? (Choose two.) A.    Users are typing the password incorrectly.B.    Users are in a forest that has 1-way trust.C.    Users are in a forest that has 2-way trust.D.    Users are logging into vCenter Server with incorrect permissions. Answer: ABExplanation:The possible explanation for this error might be that the users are typing password incorrectly or they are in a forest with has only 1-way trust. You need 2-way trust to get the credentials accepted. !!!RECOMMEND!!! 1.|2017 New 2V0-621D Exam Dumps (PDF & VCE) 256Q&As Download:https://www.braindump2go.com/2v0-621d.html 2.|2017 New 2V0-621D Study Guide Video: YouTube Video: YouTube.com/watch?v=EeODpwZixxo --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2017-07-25 08:22:18 Post date GMT: 2017-07-25 08:22:18 Post modified date: 2017-07-25 08:22:18 Post modified date GMT: 2017-07-25 08:22:18 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com