2V0-81.20 Dumps
2V0-81.20 Braindumps 2V0-81.20 Real Questions 2V0-81.20 Practice Test
2V0-81.20 Actual Questions
killexams.com
Professional VMware Security
https://killexams.com/pass4sure/exam-detail/2V0-81.20
When designing NSX-T for high availability with Layer 2 adjacency, what is the recommended number of NSX Managers that should be deployed?
2 NSX Managers deployed using a load balancer
1 NSX Manager using vSphere for high availability
3 NSX Managers using a VIP address for Management
2 NSX Managers using a VIP address for Management
Explanation:
Reference: https://docs.vmware.com/en/VMware-Cloud-Foundation/4.3/vcf-management-domain-design/GUID- E8F4757B-8C4A-4CBB-BE93-E6969A8940D3.html
An organization is expanding NSX to deploy the NSX Distributed Firewall on an AWS VPC and Azure VNET. Which statement is true concerning the expansion?
The request is not possible because NSX works only in VMware environments.
NSX can only manage native security components on AWS and Azure with agent based mode.
NSX can only do an agent based mode on AWS and Azure.
NSX can choose native security components on AWS and Azure or agent based mode.
Explanation:
Reference: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/administration/GUID-9522BEC9-E85E- 41DC-8AF5-2652A647730F.html
Which two are features of a hybrid cloud model for networking and security when using NSX-T Data Center and VMware NSX Cloud? (Choose two.)
NSX Data Center provides consistent logical networking and security across protected and recovery sites.
NSX Data Center supports Layer 2 VPN between an NSX Edge and a Direct Connect Gateway.
NSX Data Center and VMware NSX Cloud stretch Layer 2 domains between public clouds using the Geneve overlay.
NSX Data Center supports secure, encrypted user access to private corporate applications (SSL VPN).
NSX Data Center supports remote sites (IPsec VPN) with optional VPN gateways or hardware routers from other vendors.
Explanation: Reference:
https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/nsx/vmware-nsx-datasheet.pdf
Where in the NSX UI does an administrator add an Active Directory Domain?
Go to System > Configuration > Identity Firewall AD > ADD ACTIVE DIRECTORY
Go to Inventory > Configuration > Identity Firewall AD > ADD ACTIVE DIRECTORY
Go to Home > Configuration > Identity Firewall AD > ADD ACTIVE DIRECTORY
Go to Security > Configuration > Identity Firewall AD > ADD ACTIVE DIRECTORY
Explanation:
Reference: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/administration/GUID-8B60D22B-3119- 48F6-AEAE-AE27A9372189.html
When creating a new Identity Provider (IdP) in Workspace ONE Access, which two methods are used to identify users? (Choose two.)
SAML Attribute
NameID Element
UserID Element
User Attribute
SAML Response
Explanation:
Reference: https://docs.vmware.com/en/VMware-Workspace-ONE-Access/19.03/idm-administrator/GUID- 0C459D5A-A0FF-4893-87A0-10ADDC4E1B8D.html
Refer to the exhibit.
What command was run on the NSX Edge node to pull this information?
get tunnel-ID
show vteps
get vteps
list vteps
Explanation:
Reference: https://vdc-download.vmware.com/vmwb-repository/dcr-public/c3fd9cef-6b2b-4772-93be- 3fe60ce064a1/1f67b9e1-b111-4de7-9ea1-39931d28f560/NSX-T%20Command- Line%20Interface%20Reference.html#get%20vteps
In a Workspace ONE deployment, which three are valid pre-configured sources for creating a baseline with the Baseline Wizard? (Choose three.)
GPO Connector
Registry File Import
Windows Security Baseline
CIS Benchmarks
Custom Baseline Answer: A,C,D,E Explanation:
Reference: https://docs.vmware.com/en/VMware-Workspace-ONE-
UEM/services/Windows_Desktop_Device_Management/GUID-uemWindeskUsingBaselines.html
Which three options are used to automate patch remediation based on CVEs for Windows devices using Workspace ONE Intelligence? (Choose three.)
Use Workspace ONE UEM console to approve patches.
Create Automated remediation based on Risk score.
Create automated remediation based on CVE vulnerabilities.
Identify vulnerable devices across the entire environment based on CVE information.
Create a dashboard to track CVE remediation.
Explanation:
Reference: https://techzone.vmware.com/meeting-security-slas-through-intelligent-patch-automation-vmware- workspace-one-operational-tutorial#_1089620
A security administrator receives an error with code 1001 while configuring a time-based firewall rule on an ESXi host.
Which two actions can resolve the problem? (Choose two.)
restarting the NSX firewall kernel module on the ESXi host
restarting the NTP service on the ESXi host
configuring the ESXi host with a remote NTP server
configuring the ESXi host with a local NTP server
reinstalling the NSX modules on the ESXi host
Explanation:
Reference: https://arabitnetwork.files.wordpress.com/2018/12/nsx_64_troubleshooting-update4.pdf
In a Workspace ONE environment, what is the maximum number of days a Windows Feature Update (Windows 10 1703 and above) can be deferred?
7
90
365
30
Explanation:
Reference: https://docs.vmware.com/en/VMware-Workspace-ONE- UEM/2011/Windows_Desktop_Device_Management/GUID-AWT-PROFILE-WAU- CONFIGWD.html#:~:text=The%20maximum%20number%20of%20days,defer%20up%20t o%20365%20days
Considering the NSX Manager Node, what is VMware's recommended size for a typical production deployment?
small appliance for deployments with up to 64 hosts
medium appliance for deployments with up to 64 hosts
medium appliance for deployments with up to 128 hosts
small appliance for deployments with up to 32 hosts
Explanation:
Reference: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/installation/GUID-AECA2EE0-90FC- 48C4-8EDB-66517ACFE415.html