Oct-2024 Free NCP-CI-AWS Test Questions Real Practice Test Questions
NCP-CI-AWS Dumps Updated Oct 17, 2024 WIith 77 Questions
Nutanix NCP-CI-AWS Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
NEW QUESTION # 42
An administrator planned to create a new NC2 cluster and chose the existing AWS VPC infrastructure in the workflow. The administrator needs two private subnets to complete the configuration.
- A. For DNS and NJP management
- B. For user VMs and cluster management
- C. For Prism Element and Prism Central management
- D. For private NAT and Elastic IP management
Answer: B
Explanation:
When creating a new NC2 cluster using an existing AWS VPC infrastructure, two private subnets are needed. These subnets are used as follows:
One private subnet for user VMs, which houses the virtual machines that users interact with.
Another private subnet for cluster management, which is used for internal cluster operations and management tasks, ensuring that management traffic is isolated from user traffic for security and performance reasons.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration
NEW QUESTION # 43
An administrator needs to allow wide open access to one particular NC2 AWS cluster from an on-premises subnet of 10.19.160.0/24.
What is the proper Custom Security Group formatting to satisfy this task?
- A.
- B.
- C.
- D.
Answer: A
Explanation:
To allow wide open access to a particular NC2 AWS cluster from an on-premises subnet (10.19.160.0/24), the proper Custom Security Group formatting needs to include the necessary tags that specify the external cluster UUID and the networks allowed.
Custom Security Group Configuration:
The configuration should include tags to identify the cluster and the networks that should be granted access.
Key: nutanix:clusters
Key: nutanix:clusters:external
Value: <cluster-uuid>
Explanation of Choice:
Option B includes the necessary tags and values, ensuring that the specific cluster UUID is recognized and the on-premises subnet (10.19.160.0/24) can communicate with the NC2 cluster.
Security Group Tags:
nutanix:clusters:external - Identifies the cluster as external.
nutanix:clusters:external:cluster-uuid - Specifies the unique identifier for the cluster, enabling proper traffic routing and access.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS Security Group Documentation
Nutanix Best Practices for Custom Security Group Configuration
NEW QUESTION # 44
When creating an NC2 cluster in AWS, what are the required permissions for the account used to run the CloudFormation script?
- A. lAMFullAccess, AmazonEC2FullAccess, AWSCIoudFormationFullAccess
- B. IAMAccess, AmazonCloudDirectoryFullAccess, AWSCIoudFormationFullAccess
- C. lAMAccess, AWS_ConfigRole, AWSCIoudFormationFullAccess
- D. lAMUserSSHKeys, AWS_ConfigRole, AWSCIoudFormationFullAccess
Answer: A
Explanation:
When creating an NC2 cluster in AWS, the account used to run the CloudFormation script requires specific permissions to ensure the deployment is successful. The required permissions are:
IAMFullAccess: Provides full access to IAM resources.
AmazonEC2FullAccess: Allows full access to EC2 resources.
AWSCIoudFormationFullAccess: Grants full access to manage AWS CloudFormation stacks.
These permissions are necessary to create, manage, and deploy the required AWS resources for the NC2 cluster.
Reference:
Nutanix Support & Insights
AWS IAM Documentation
NEW QUESTION # 45
An administrator has deployed NC2 on AWS. The cluster deployment completed successfully.
After deployment, the administrator created a subnet in AWS, added it as a network in Prism Element, deployed Prism Central using the newly-configured network, and registered the cloud cluster with it.
The on-premises network and AWS are connected via a Site-to-Site VPN. Cluster nodes, CVM, and Prism Central can communicate with each other, but cannot be accessed from the on-premises network.
What two issues might be the cause of this problem? (Choose two.)
- A. Traffic from the on-premises network is not permitted by VM and Management security groups.
- B. AWS Direct Connect must be used to establish connection between AWS and on-premises
- C. The AHV firewall is blocking traffic from the on-premises network.
- D. The AWS VPC traffic is blocked by a firewall in the on-premises network.
Answer: A,D
Explanation:
Traffic from the on-premises network is not permitted by VM and Management security groups:
Ensure that the security groups assigned to the VMs and management interfaces in AWS allow inbound traffic from the on-premises network. Without appropriate security group rules, the traffic will be blocked.
The AWS VPC traffic is blocked by a firewall in the on-premises network:
Check if the firewall on the on-premises network is configured to allow traffic from the AWS VPC. Firewalls may have restrictive rules that block incoming traffic, preventing communication.
Reference:
Refer to AWS documentation on security groups and firewalls and Nutanix documentation on configuring networking for NC2 clusters.
NEW QUESTION # 46
An administrator needs to recover a cluster protected using the Cluster Protect feature. The Prism Central instance was not on the failed cluster.
Which steps, in order, should the administrator perform to recover the cluster?
Answer:
Explanation:
Reference:
Nutanix Documentation on Cluster Protect and Recovery Processes
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration
NEW QUESTION # 47
An administrator seeks to ensure that the newly created NC2 organization named Finance can only deploy clusters into certain cloud regions.
What action should the administrator take to do this?
- A. Specify allowed regions when configuring a cloud account for the Finance NC2 organization.
- B. Configure RBAC roles on the Finance NC2 organization to allow access to regions.
- C. Open a support ticket with Nutanix to whitelist the allowed regions for the Finance NC2 organization.
- D. Configure IAM permission in cloud accounts to restrict access to certain regions.
Answer: A
Explanation:
To ensure that the newly created NC2 organization named Finance can only deploy clusters into certain cloud regions, the administrator should specify the allowed regions during the cloud account configuration.
This action restricts the regions available for cluster deployment, ensuring compliance with organizational policies or regulatory requirements.
The allowed regions can be set in the cloud account settings associated with the Finance NC2 organization, defining the geographical scope of operations.
Reference:
Refer to the Nutanix documentation on NC2 cloud account configuration and region restrictions.
NEW QUESTION # 48
Which two statements are the most accurate regarding Cluster Protect? (Choose two.)
- A. Nutanix Guest Tools (NGT) is not required to be installed on User VMs.
- B. The Cluster Protect feature requires AOS version 6.7 or higher.
- C. An AWS subnet can be shared by VMs, Prism Central, and Multicloud Snapshort Technology (MST).
- D. The dusters that are to be protected must be registered with the same instance of Prism Central.
Answer: B,D
Explanation:
The clusters that are to be protected must be registered with the same instance of Prism Central (Answer C):
For Cluster Protect to function correctly, all clusters intended for protection must be registered under the same Prism Central instance. This ensures consistent management and coordination of protection policies and operations across clusters.
The Cluster Protect feature requires AOS version 6.7 or higher (Answer D):
Cluster Protect is a feature that is available starting from AOS version 6.7. To utilize this feature, ensure that the Nutanix clusters are running this version or a newer one.
Reference:
Nutanix Cluster Protection Documentation
Nutanix AOS Release Notes
NEW QUESTION # 49
An administrator is seeking help with an ongoing NC2 issue. After reaching out to Nutanix support, the administrator is introduced to NC2 specialist who can help troubleshoot the problem.
- A. Confirm the Support Authorization on the organization is set to Full Access.
- B. Ensure the specialist is assigned the RBAC role with proper permissions.
- C. Add the specialist as an admin user to the organizations.
- D. Provide the specialist with the administrator's login credentials.
Answer: A,B
Explanation:
Ensure the specialist is assigned the RBAC role with proper permissions (Answer A):
Role-Based Access Control (RBAC) ensures that the specialist has the necessary permissions to troubleshoot and manage the NC2 environment. This avoids unnecessary privilege escalations and maintains security.
Confirm the Support Authorization on the organization is set to Full Access (Answer C):
Setting the Support Authorization to Full Access allows the Nutanix support specialist to have the required access to investigate and resolve issues in the environment. This is essential for effective troubleshooting.
Reference:
Nutanix RBAC Documentation
Nutanix Support Access Guide
NEW QUESTION # 50
Which service enables the monitoring of key metrics on various AWS services, inducing EC2, EBS, and VPC for an NC2 cluster deployments?
- A. AWS CloudTrail
- B. Amazon CloudWatch
- C. Amazon inspector
- D. AWS CloudFormation
Answer: B
Explanation:
Amazon CloudWatch is the service that enables the monitoring of key metrics on various AWS services, including EC2, EBS, and VPC, for NC2 cluster deployments.
Amazon CloudWatch:
Amazon CloudWatch provides monitoring for AWS cloud resources and applications. It collects and tracks metrics, collects and monitors log files, and sets alarms.
Specifically, for NC2 deployments, CloudWatch can be used to monitor key metrics such as CPU utilization, disk I/O, network I/O for EC2 instances, EBS volume performance, and VPC network traffic.
Features:
Metrics Monitoring: Collects and visualizes operational data in the form of metrics, including utilization, performance, and health.
Logs Monitoring: Collects log data, monitors it in real-time, and triggers alarms based on predefined thresholds.
Alarms: Notifies when operational performance thresholds are breached.
Integration with NC2:
By setting up CloudWatch, administrators can ensure they have visibility into the performance and health of their Nutanix clusters on AWS, aiding in proactive management and troubleshooting.
Reference:
Amazon CloudWatch Documentation
Nutanix Cloud Clusters on AWS Administration Guide
AWS Monitoring Best Practices
NEW QUESTION # 51
To manually create an AWS VPC with Public access to Prism Element for testing purposes, Which components must be created?
- A. VPC, Delegated Subnets, Route Tables, NAT Gateway, vNets, Load balancer
- B. VPC, Delegated Subnets, Route Tables, NAT Gateway, Internet Gateway, Load balancer
- C. VPC Subnets Route Tables NAT Gateway, Internet Gateway, Load balancer
- D. VPC Subnets Route subnets, Route Tables, NAT Gateway, Internet Gateway, VPN
Answer: B
Explanation:
To manually create an AWS VPC with Public access to Prism Element for testing purposes, the following components must be created:
VPC: A Virtual Private Cloud to provide an isolated network for the resources.
Delegated Subnets: Subnets within the VPC to segment the network and allocate IP ranges.
Route Tables: To define routing rules for the subnets to ensure proper traffic flow.
NAT Gateway: To enable instances in the private subnets to access the internet.
Internet Gateway: To allow direct internet access to instances in the public subnets.
Load Balancer: To distribute traffic across multiple instances for improved availability and redundancy.
Reference:
Refer to the AWS documentation on VPC creation and Nutanix documentation on network setup for Prism Element access.
NEW QUESTION # 52
An administrator has deployed an NC2 on AWS cluster and doesn't have connectivity back to the on-premises environment yet. The administrator wants to SSH into a CVM to edit a security setting and has deployed a Jump Host into an existing public subnet.
What action must the administrator still take to gain access to the CVM?
- A. Edit the UVM security group to allow SSH from the Jump Host IP and remove Cluster Lockdown.
- B. Edit the CVM iptables to allow SSH.
- C. Create Custom Network Security Group at the subnet level and add the IP address of the Jump Host
- D. Edit the User Management Network Security Group to allow SSH from the Jump Host IP.
Answer: D
Explanation:
To SSH into a Controller VM (CVM) in an NC2 on AWS cluster without on-premises connectivity, the administrator needs to ensure that the security settings allow SSH access from the Jump Host. This involves editing the User Management Network Security Group to permit SSH traffic from the Jump Host IP.
Deploy Jump Host:
Ensure the Jump Host is deployed in a public subnet with an Elastic IP (EIP) assigned for external access.
Edit User Management Network Security Group:
Locate the security group associated with the user management network.
Modify the inbound rules to allow SSH (port 22) from the Jump Host's IP address. This ensures that the Jump Host can establish an SSH connection to the CVM.
Steps to Edit Security Group:
Navigate to the EC2 dashboard in the AWS Management Console.
Select "Security Groups" under the "Network & Security" section.
Find and select the appropriate security group.
Edit the inbound rules to add a new rule:
Type: SSH
Protocol: TCP
Port Range: 22
Source: Custom IP (enter the Jump Host's public IP address)
Additional Configuration:
Ensure that the CVM itself allows SSH connections and that no internal firewall rules block the traffic.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS Security Group Documentation
Nutanix Best Practices for Secure Access
NEW QUESTION # 53
An administrator has been tasked with deploying an NC2 cluster on AWS with the requirement to protect workloads. Which two options are valid to protect the workloads on this cluster? (Choose two.)
- A. Use an existing on-prem Nutanix cluster as a disaster recovery target.
- B. Deploy a cluster across two availability zones.
- C. Deploy one-node cluster in another availability zone.
- D. Create a second NCZ cluster in a different availability zone.
Answer: D
Explanation:
To protect workloads on an NC2 cluster on AWS, deploying strategies that ensure high availability and disaster recovery are essential. The two valid options are:
Create a Second NC2 Cluster in a Different Availability Zone:
High Availability: Deploying a second NC2 cluster in a different availability zone ensures that workloads can be quickly recovered in case of an availability zone failure.
Disaster Recovery: This setup enables asynchronous replication between clusters, providing a robust disaster recovery solution.
Use an Existing On-Prem Nutanix Cluster as a Disaster Recovery Target:
Hybrid DR: Leveraging an existing on-premises Nutanix cluster for disaster recovery provides a cost-effective and efficient DR solution.
Replication: Set up replication policies to ensure data is consistently copied from the NC2 cluster on AWS to the on-premises cluster.
Why Not Other Options:
One-node cluster in another availability zone: Not a valid DR solution as a single-node cluster cannot provide the required resilience and high availability.
Deploy a cluster across two availability zones: While this can enhance availability, it is not a typical approach for Nutanix clusters which are designed to operate within a single availability zone for simplicity and performance reasons.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Disaster Recovery Best Practices
AWS Availability Zones and Disaster Recovery Documentation
NEW QUESTION # 54
Which two features or services can an administrator ensure are protected by cluster protect within an NC2 environment? (Choose two.)
- A. VM Templates
- B. Virtual Machine Disks
- C. Flow Network Security
- D. Nutanix Files
Answer: B,D
Explanation:
Within an NC2 environment, the Cluster Protect feature can ensure the protection of:
Nutanix Files: This provides file services within the Nutanix ecosystem, and Cluster Protect can safeguard the data stored in Nutanix Files.
Virtual Machine Disks: This ensures that the data stored on virtual machine disks is protected, providing backup and recovery options for the virtual machines running within the cluster.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix AOS 6.7 Documentation
NEW QUESTION # 55
An administrator is deploying a new cluster on AWS and would like to ensure the data is encrypted. Due to cost constraints, the deployment will leverage the native local key manager (LKM).
What is the minimal number of nodes needed to support the Nutanix native LKM?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: B
Explanation:
To support Nutanix's native Local Key Manager (LKM) for data encryption in a cost-effective manner, a minimum of three nodes is required. This ensures that there is enough redundancy and reliability for the encryption services to function properly, complying with best practices for distributed key management.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration
NEW QUESTION # 56
Which two options are prerequisites for deploying an NC2 on AWS cluster? (Choose two.)
- A. An on-premises Prism Central environment
- B. AWS Direct Connect
- C. A valid CIDR range
- D. A my.nutanix.com account
Answer: C,D
Explanation:
A valid CIDR range: A CIDR (Classless Inter-Domain Routing) range is necessary for creating the subnets within the VPC. This range defines the IP address space for the cluster and its components.
A my.nutanix.com account: This account is required to access Nutanix services, including the NC2 console, manage licenses, and perform other administrative tasks.
AWS Direct Connect and an on-premises Prism Central environment are not prerequisites for deploying an NC2 on AWS cluster. While Direct Connect can be used for enhanced network performance and connectivity, it is not a requirement for deployment. Similarly, having an on-premises Prism Central environment is not mandatory for NC2 deployment on AWS.
Reference:
Refer to the Nutanix documentation on NC2 prerequisites and setup guides, and AWS documentation on VPC and subnet creation.
NEW QUESTION # 57
When configuring an alert email in Prism Central deployed within an NC2 environment, what is required in order for the emails to be sent properly?
- A. SMTP server configured in Prism Central settings
- B. Cluster Super Admin permissions
- C. Name servers configured in Prism Central
- D. A whitelisted public cloud console endpoint
Answer: A
Explanation:
To ensure that alert emails are sent properly from Prism Central within an NC2 environment, configuring an SMTP server in the Prism Central settings is required. The SMTP server facilitates the sending of email notifications for alerts and other communications.
SMTP Configuration:
Prism Central requires an SMTP server to send email alerts. This involves specifying the SMTP server address, port, and authentication details if needed.
The configuration must include the email address from which the alerts will be sent and the recipient addresses.
Steps to Configure SMTP Server in Prism Central:
Log in to Prism Central.
Navigate to the "Settings" menu.
Select "Email Server" under the "Alerts" section.
Enter the SMTP server details, including the server address, port, and authentication credentials.
Test the configuration to ensure emails are sent correctly.
Reference:
Nutanix Prism Central Administration Guide
Nutanix Support Documentation on Email Alert Configuration
Best Practices for Configuring SMTP Servers in Cloud Environments
NEW QUESTION # 58
An administrator is planning a new NC2 on AWS deployment. The workload VMs to be deployed on the new cluster have low storage and memory, but high CPU frequency (>3.0 GHz) requirements.
The administrate! has also been tasked with ensuring that the cluster nodes have the lowest number of CPU cores to reduce application licensing requirements.
Which node type will satisfy this new deployment?
- A. m5d.metal
- B. i3.metal
- C. zld.metal
- D. i4i.metal
Answer: B
Explanation:
For a new NC2 on AWS deployment where workload VMs have low storage and memory requirements but high CPU frequency (>3.0 GHz) requirements, and the goal is to minimize the number of CPU cores to reduce application licensing costs, the i3.metal instance type is the most suitable.
i3.metal:
High CPU Frequency: i3.metal instances offer high-frequency Intel Xeon processors (up to 3.1 GHz) which meet the high CPU frequency requirement.
Low Storage and Memory: These instances come with a balanced amount of storage and memory, suitable for workloads with low requirements in these areas.
Minimized CPU Cores: i3.metal instances have fewer CPU cores compared to other high-frequency instances like i4i.metal, making them ideal for minimizing application licensing costs.
Other Instance Types:
z1d.metal: While also offering high CPU frequency, these instances typically come with a higher core count and more memory, which may not be optimal for minimizing licensing costs.
i4i.metal: Designed for I/O intensive applications with higher core counts.
m5d.metal: Balanced instance type but with more cores and not as high CPU frequency as required.
Reference:
AWS EC2 Instance Types Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Instance Selection
NEW QUESTION # 59
The cluster is configured as follows:
* 8 nodes
* Prism Central Deployed
* Files Deployed
Following the deployment, the administrator experiences network connectivity issues.
Which reason explains the connectivity issues?
- A. The 192.168.5.0/24 range is reserved by IANA,
- B. The 192.168.5.0/24 range does not have enough IP addresses available.
- C. The 192.168.5.0/24 range is not a valid CIDR range.
- D. The 192.168.5.0/24 range is reserved for internal cluster usage.
Answer: D
Explanation:
The 192.168.5.0/24 range is often reserved for internal cluster communication within Nutanix deployments.
Using this CIDR range for other purposes could lead to network conflicts and connectivity issues, as it might interfere with the internal operations and communication channels of the Nutanix cluster.
Ensuring that the CIDR range is not overlapping with any reserved ranges is crucial for maintaining proper network connectivity and cluster functionality.
Reference:
Refer to the Nutanix documentation on network configuration and best practices for NC2 deployments to confirm reserved IP ranges and their appropriate use.
NEW QUESTION # 60
In which two ways should an NC2 on AWS cluster be hibernated manually? (Choose two.)
- A. Log into Prism, Central, navigate to Planning, find hibernate and resume.
- B. Log into Prism Element navigate to Settings and select Hibernate/Resume.
- C. Select the cluster under NC2 console and Select Hibernate/Resume on the cluster sur page.
- D. Log into NC2 console, find the cluster name and select Hibernate/Resume from the ellipses.
Answer: C,D
Explanation:
To manually hibernate an NC2 on AWS cluster, the administrator can use the following methods:
Select the cluster under NC2 console and Select Hibernate/Resume on the cluster sur page: Navigate to the specific cluster in the NC2 console and use the provided Hibernate/Resume option.
Log into NC2 console, find the cluster name and select Hibernate/Resume from the ellipses: Access the NC2 console, locate the cluster name, and select the Hibernate/Resume option from the ellipses (three dots) menu.
These options allow for the manual control of the cluster's hibernation state directly within the NC2 console interface.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix Support & Insights
NEW QUESTION # 61
An administrator has been tasked with ensuring NC2 VMs are able to access AWS resources. The NC2 VM traffic must not traverse the internet.
in which two ways would the administrator achieve this? (Choose two.)
- A. By using a NAT Gateway.
- B. By using an Interface Endpoint
- C. By using a Gateway Endpoint
- D. By using a VPC Peer.
Answer: B,D
Explanation:
To ensure that NC2 VMs can access AWS resources without traversing the internet, the administrator can use AWS VPC Peering and Interface Endpoints. Both methods ensure that traffic stays within the AWS network, maintaining security and efficiency.
Interface Endpoint:
Interface Endpoints allow you to privately connect your VPC to supported AWS services. They use AWS PrivateLink to route traffic directly to services within the AWS network, bypassing the public internet.
Steps:
Create an interface endpoint for the required service in the AWS VPC console.
Ensure the security groups and route tables are configured to allow traffic to the interface endpoint.
VPC Peering:
VPC Peering allows the routing of traffic between VPCs using private IP addresses, without the need for internet gateways, NAT devices, or VPN connections.
Steps:
Create a VPC peering connection between the VPCs.
Update the route tables to direct traffic between the peered VPCs.
Ensure security group rules allow the necessary traffic between VPCs.
Reference:
AWS VPC Peering Documentation
AWS Interface Endpoint Documentation
Nutanix Cloud Clusters on AWS Administration Guide
NEW QUESTION # 62
An administrator needs to backup Prism Central configuration data to an Amazon S3 bucket.
Which pcdr-cli command parameters is needed to satisfy this task?
- A. deployment-info
- B. protect
- C. list-protection-targets
- D. recover
Answer: B
Explanation:
To backup Prism Central configuration data to an Amazon S3 bucket, the pcdr-cli command with the protect parameter is used. This parameter is specifically designed for creating protection policies and backing up Prism Central data.
Reference:
Nutanix Prism Central Documentation
Nutanix pcdr-cli Command Reference
NEW QUESTION # 63
A company wants to use Nutanix NC2 to burst VDI resources to the AWS cloud. The VDI workloads requires GPU accelation.
Which solution meets the company's requirements?
- A. AN36P nodes
- B. g4dn.metal nodes
- C. m6g.metal nodes
- D. AN36 nodes
Answer: B
Explanation:
For VDI workloads that require GPU acceleration, the g4dn.metal nodes are the appropriate choice. These instances are equipped with NVIDIA T4 GPUs, which are well-suited for graphics-intensive applications such as VDI workloads that need GPU acceleration. Other node types like AN36P, m6g.metal, or AN36 do not provide the necessary GPU capabilities.
Reference:
Nutanix Support & Insights - GPU support in AWS
NEW QUESTION # 64
An administrator is tasked with deploying a VM in an NC2 cluster on AWS that needs to by accessed by resources within the on-premises datacenter.
The cluster has the following characteristics:
* 8 nodes
* Resides in the us-east-1a Availability Zone
* Contains 13 Subnets
* Has access to a Direct Connect connection
* Subnet that the User VM (UVM) is being deployed to:UserVM_subnet
There are multiple VMs within the cluster and the UserVM_subnet has access to the on-premises resources.
The administrator deploys the machine, but communication is not possible.
What is the most likely resolution for this situation?
- A. The AWS IGW requires the new application's ports adding to inbound traffic.
- B. The AWS UVM Security Group requires the new application's ports adding to inbound traffic.
- C. The AWS Internal Management Security Group requires the new application's ports adding to outbound traffic.
- D. The AWS User Management Security Group requires the new application's ports adding to and traffic
Answer: B
Explanation:
For a VM deployed in an NC2 cluster on AWS to be accessed by resources within the on-premises datacenter, the security group associated with the User VM (UVM) subnet must allow inbound traffic on the specific ports required by the application.
If the security group rules do not permit inbound traffic on these ports, the communication will fail, even if other network configurations are correct.
The administrator should ensure that the UVM Security Group includes rules to allow inbound traffic for the application's required ports, facilitating proper communication between the VM and on-premises resources.
Reference:
Refer to the AWS documentation on security group configurations and Nutanix NC2 documentation for details on configuring network access and security group rules.
NEW QUESTION # 65
What is the purpose of an organization in the NC2 console?
- A. To segregate clusters based on specific requirements
- B. To map the on-premises Prism Central environment
- C. To Link with a Public Cloud account
- D. To link with NC2 subscription plans
Answer: A
Explanation:
In the NC2 console, an organization is used to segregate clusters based on specific requirements. This segregation allows administrators to manage clusters more effectively by grouping them according to business units, projects, or other criteria. This organizational structure helps in maintaining clear boundaries and applying specific policies or permissions to different clusters within the same NC2 environment.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix Certified Professional - Cloud Integration - AWS
NEW QUESTION # 66
Which NC2 user role will allow full access to clusters created within an organization?
- A. Cluster Super Admin
- B. Organization Administrator
- C. Cluster Administrator
- D. Organization Security Administrator
Answer: B
Explanation:
In Nutanix Cloud Integration with AWS, specifically version 6.7, the role that allows full access to clusters created within an organization is the Organization Administrator.
The Organization Administrator role has the highest level of privileges within an organization, enabling the user to manage all aspects of the clusters, including creation, modification, and deletion.
This role is designed to oversee and control the entire organization's resources, ensuring comprehensive management capabilities over all clusters and associated resources.
Reference:
Refer to the Nutanix documentation on roles and permissions for NC2 on AWS for further details.
NEW QUESTION # 67
......
View All NCP-CI-AWS Actual Free Exam Questions Updated: https://examsboost.actual4dumps.com/NCP-CI-AWS-study-material.html