Verified 3V0-21.21 Dumps Q&As - 3V0-21.21 Test Engine with Correct Answers [Q12-Q34]

Share

Verified 3V0-21.21 Dumps Q&As - 3V0-21.21 Test Engine with Correct Answers

Pass Your 3V0-21.21 Dumps as PDF Updated on 2023 With 90 Questions


Certification Topics of VMware 3V0-21.21 Exam

Key topics include the following:

  • Virtually Deploying Virtual Machines
  • Configuring and Managing ESXi hosts using the vSphere Client
  • Virtual Machine Security Hardening
  • Operations with VMware vSphere Web Client (vSphere)
  • Configuring and Managing vSphere ESXi Hosts

 

NEW QUESTION # 12
A customer requests a review of its current vSphere platform design.
The following information is noted:
There are three different workload profiles for the virtual machines:
Tier-1 virtual machines operate resource-intensive applications and require dedicated allocations for CPU and RAM.
Tier-2 virtual machines operate internet-facing applications and require access to externally facing networks.
Tier-3 virtual machines operate platform management tools such as vCenter Server and have different lifecycle management requirements.
Tier-1, Tier-2 and Tier-3 virtual machines are all hosted on a single large vSphere cluster.
The Chief Information Security Officer (CISO) has raised concerns that hosting externally facing applications alongside management tools does not meet internal compliance standards.
The Operations team has raised concerns about Tier-1 virtual machines negatively impacting the performance of vCenter Server.
The Operations lead has stated that management changes have consistently been rejected by application teams.
As a result of the review, which recommendation should the architect make regarding the design of this platform?

  • A. Separate Tier-1, Tier-2 and Tier-3 virtual machines onto dedicated clusters
  • B. Separate Tier-2 virtual machines onto a dedicated cluster
  • C. Separate Tier-1, Tier-2 and Tier-3 virtual machines using dedicated distributed virtual switches (DVS)
  • D. Separate Tier-1, Tier-2 and Tier-3 virtual machines using resource pools and shares

Answer: A

Explanation:
Separate Tier-1, Tier-2 and Tier-3 virtual machines onto dedicated clusters This will address the CISO's and Operations team concerns


NEW QUESTION # 13
An architect is designing storage for a new vSphere environment to meet the following requirements:
Asynchronous replication is required between two sites.
The impact on the storage layer should not impact the performance of the compute layer.
Each application tier will require different replication attributes.
Virtual machine live migration across compute and storage must be supported.
Virtual machine aware back up will be leveraged.
Operational management overhead should be minimized.
Operational automation should be supported.
Which storage design recommendations would meet the requirements?

  • A. Two new ISCSI storage arrays will be deployed, one at either site.
    Each application tier will be initially provisioned a new LUN. Data replication will be offloaded to the new arrays.
  • B. Two new vSphere clusters enabled with vSAN will be deployed, one at either site. vSAN will be used to provide policy-based management for each application tier.
    vSphere Replication will be used to replicate the virtual machine data in an asynchronous configuration.
  • C. Two new storage arrays will be deployed, one at either site.
    vSphere Volumes (vVOLs) will be used to provide policy-based management for each application tier. Data replication will be offloaded to the new arrays.
  • D. Two new Fibre Channel storage arrays will be deployed, one at either site.
    Each application tier will be initially provisioned a new LUN. Data replication will be offloaded to the new arrays.

Answer: B


NEW QUESTION # 14
During a requirements gathering workshop, the customer provides the following requirement:
A new vSphere platform must be designed securely and all interfaces must be protected against potential snooping.
How should this non-functional security requirement be documented?

  • A. Interfaces must be audited.
  • B. Encrypted channels must be used for all communications.
  • C. Communications must be through Private VLANs (PVLAN).
  • D. Unauthorized access to interfaces must be reported within 15 minutes.

Answer: C

Explanation:
PVLANs divide the broadcast domain into multiple broadcast sub-domains and allow further isolating different devices within the same VLAN. They provide layer 2 isolation between ports within the same broadcast domain. For example: "Your ESXi host uses several networks. Use appropriate security measures for each network, and isolate traffic for specific applications and functions. For example, ensure that VMware vSphere vMotion traffic does not travel over networks where virtual machines are located. Isolation prevents snooping. Having separate networks is also recommended for performance reasons." https://docs.vmware.com/en/VMware-vSphere/7.0/vsphere-esxi-vcenter-server-70-security-guide.pdf


NEW QUESTION # 15
A customer is deploying a new cluster and wants to be able to patch and update two hosts in parallel. The cluster must be able to maintain N+1 resiliency across the remaining hosts while patching activities are performed. The current expected utilization of the platform requires a minimum of two hosts to support all of the virtual machines.
What is the minimum number of hosts the customer will require in the cluster in order to meet the required resiliency level?

  • A. Four
  • B. Six
  • C. Seven
  • D. Five

Answer: A


NEW QUESTION # 16
An organization's data scientists are executing a plan to use machine learning (ML). They must have access to graphical processing unit (GPU) capabilities to execute their computational models when needed. The solutions architect needs to design a solution to ensure that GPUs can be shared by multiple virtual machines.
Which two solutions should the architect recommend to meet these requirements? (Choose two.)

  • A. AMD MxGPU
  • B. vSGA
  • C. NVIDIA vGPU
  • D. vSphere DirectPath I/O
  • E. vSphere Bitfusion

Answer: C,E

Explanation:
Reference:
https://blogs.vmware.com/apps/2018/07/using-gpus-with-virtual-machines-on-vsphere-part-1-overview.html


NEW QUESTION # 17
During a requirements gathering workshop to design a physical to virtual migration, the customer provides the following information:
There is no physical firewall in the data center with no anticipated plans for a future network refresh.
Leveraging the virtual infrastructure to mitigate the lack of network security must be addressed in the design.
All physical servers to be migrated exist on the same VLAN.
Which recommendation should the architect make to address the customer requirement with regard to virtual networking?

  • A. Enable traffic filtering and marking Use allow or drop actions
  • B. Disable traffic filtering and marking Use tag actions
  • C. Split the virtual machines into several VLANs Use tag actions
  • D. Create port groups with different names and same VLAN IDs Enable traffic shaping for ingress and egress traffic

Answer: C


NEW QUESTION # 18
An architect is finalizing the design for a new vSphere platform based on the following information:
All Windows virtual machines will be hosted on a dedicated cluster for licensing purposes.
All Linux virtual machines will be hosted on a dedicated cluster for licensing purposes. All management virtual machines will be hosted on a dedicated cluster.
A total of ten physical sites will be used to host virtual machines.
In the event of one physical datacenter becoming unavailable, the manageability of the virtual infrastructure in the remaining data centers should not be impacted.
Access to configure the management virtual machines via vCenter Server must be controlled through the management Active Directory domain.
Access to configure the Windows and Linux virtual machines must be controlled through the resource Active Directory domain.
The management and resource Active Directory domains are part of separate Active Directory forests and do not have any trusts between them.
The design will use Active Directory with Integrated Windows Authentication.
How should the architect document the vCenter Server configuration for this design?

  • A. Deploy a vCenter Server for the management cluster with a dedicated SSO domain.
    Deploy a vCenter Server for all remaining clusters and use a dedicated SSO domain for each physical site.
  • B. Deploy a vCenter Server for the management cluster.
    Deploy a vCenter Server for all remaining clusters.
    Create a shared SSO domain across all physical sites.
  • C. Deploy a vCenter server for the management cluster.
    Deploy a vCenter Server for all remaining clusters. Create a shared SSO domain for each physical site.
  • D. Deploy a vCenter Server for the management cluster with a dedicated SSO domain.
    Deploy a vCenter Server for all remaining clusters and use a dedicated SSO domain into a single physical site.

Answer: B


NEW QUESTION # 19
An architect is designing a new greenfield environment with 600 ESXi hosts in an automated fashion. The engineering department already has a PXE Boot server, TFTP server, and DHCP server set up with an NFS mount for their current Linux servers.
The architect must be able to demonstrate and meet a security requirement to have all infrastructure processes separated.
Which recommendation should the architect make for the ESXi host deployment?

  • A. Ask the business to expand the engineering environment to service the virtual environment as well
  • B. Deploy each ESXi host individually and document it to satisfy security requirements
  • C. Request a common shared network with flexible security measures to accommodate different auto deployment options
  • D. Request an isolated network segment to use and dedicate it to Auto Deploy functions

Answer: D

Explanation:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.esxi.install.doc/GUID-8DAC6FEE-0441-4072-8195-9461095C2041.html


NEW QUESTION # 20
An architect is finalizing the design for a new vCenter Server High Availability deployment.
What is one thing the architect must document in the design?

  • A. The details of each of the vCenter Server licenses for active, passive and witness nodes
  • B. The vCenter Management Network IPv4 addresses for the witness node vCenter Server
  • C. The load balancing algorithm used by the Management Distributed Virtual Switches (DVS)
  • D. The SSH configuration settings for the vCenter Server's active node

Answer: D

Explanation:
vCenter HA uses SSH keys for password-less authentication between the Active, Passive, and Witness nodes. The authentication is used for heartbeat exchange and file and data replication. To replace the SSH keys in the nodes of a vCenter HA cluster, you deactivate the cluster, generate new SSH keys on the Active node, transfer the keys to the passive node, and activate the cluster.
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.avail.doc/GUID-B8E590BA-ACF4-48A1-8644-E492D2241031.html
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.avail.doc/GUID-5F7DAFB2-60BD-4C50-A7E5-29A319CBB714.html


NEW QUESTION # 21
There is a request for approved virtual machine applications through a new vSphere platform's integrated automation portal. The platform was built following all provided company security guidelines and has been assessed against Sarbanes-Oxley Act of 2002 (SOX) regulations.
The platform has the following characteristics:
vRealize Operations is being used to monitor all clusters.
There is a dedicated ESXi cluster, supporting all management services.
All network traffic is via distributed virtual switches (DVS).
There is a dedicated ESXi cluster for all line-of-business applications.
Network traffic is serviced by NSX-T.
There is a dedicated ESXi cluster for virtual desktop infrastructure (VDI).
Network traffic is serviced by NSX-T.
The application owner is requesting approval to install a new service that must be protected as per the Payment Card Industry (PCI) Data Security Standard.
Which additional non-functional requirement should the architect include in the design to support the new service?

  • A. The vSphere hosting platform and all PCI application virtual machines must be assessed for SOX compliance.
  • B. The vSphere hosting platform and all PCI application virtual machines must be monitored using the vRealize Operations Compliance Pack for Payment Card Industry.
  • C. The vSphere hosting platform and all PCI application virtual machines must be assessed against Payment Card Industry (PCI) Data Security Standard compliance.
  • D. The vSphere hosting platform and all PCI application virtual machine network traffic must be routed via NSX-T.

Answer: C


NEW QUESTION # 22
An architect is tasked with designing a greenfield VMware software-defined data center (SDDC) solution that will be used to deliver a private cloud service for a customer.
During the initial meeting with the service owner and business sponsor, the customer has provided the following information to help inform the design:
* The solution must initially support the concurrent running of 300 production and 600 development virtual machines.
* The production environment should be delivered across two geographically dispersed data centers.
* The development environment must be vSphere-based but does not have to be deployed on-premises.
* The two data centers are connected to each other through multiple diversely routed, high bandwidth and low latency links.
* The customer's server hardware standard document states that all virtual infrastructure hosts must be based on blade architecture only.
* The service owner has said that is important to ensure that neither the availability target of 99.5% nor the resource capacity is affected when the operations team completes maintenance activities, such as the monthly software patching and ad-hoc hardware break/fix.
* All virtual machine backups must be completed using the existing backup service.
* The recovery time objective (RTO) for the service is four hours.
* The recovery point objective (RPO) of the service is 24 hours.
Given the information from the customer, which two would be classified as assumptions within the design?
(Choose two.)

  • A. The backup service has sufficient capacity for the new requirements
  • B. The customer will update their hardware standard to support rack mount servers
  • C. The clusters will have a minimum redundancy of N+1
  • D. The backup service will store data in a secure facility
  • E. All virtual machines will be deployed with the same resource profile for production and development

Answer: B,D


NEW QUESTION # 23
Refer to the exhibit.
During a requirements gathering workshop, a customer shares the following diagram regarding their availability service-level agreements (SLAs):

The customer states that there is no application level availability for legacy applications.
Which recommendation could the architect make to meet the customer's high availability requirements for the legacy applications virtual machines?

  • A. Achieve application availability with snapshots
  • B. Enable vSphere HA and add a VM Override with VM Restart Priority set to Lowest
  • C. Enable Fault Tolerance
  • D. Enable vSphere HA and add a VM Override with VM Restart Priority set to Disabled

Answer: B


NEW QUESTION # 24
An architect is designing a new vSphere platform to meet a list of requirements from the security team.
Which two requirements would be classified as non-functional requirements? (Choose two.)

  • A. Migration of virtual machines between hosts must be encrypted
  • B. Data integrity must be ensured
  • C. A common content library must be maintained across all data centers
  • D. Log information must be verbose to support incident resolution
  • E. Critical events generated within the platform must be logged to an external Syslog service

Answer: B,E


NEW QUESTION # 25
An architect is reviewing a physical storage design. The customer has specified that a new active-passive based storage array will be used to provide storage for the vSphere clusters.
Which configuration should for the architect recommended?

  • A. VMW_PSP_MRU
  • B. VMW_SATP_LOCAL
  • C. VMW_SATP_DEFAULT_AA
  • D. VMW_PSP_FIXED

Answer: A

Explanation:
The Most Recently Used (VMware) policy is enforced by VMW_PSP_MRU. It selects the first working path discovered at system boot time. The Most Recently Used policy does not use the preferred path setting. This policy is default for most active-passive storage devices. https://docs.vmware.com/en/VMware-vSphere/6.7/vsphere-esxi-vcenter-server-671-storage-guide.pdf


NEW QUESTION # 26
An architect is tasked with recommending a solution for a company that is running out of VLANs. Currently the company is running two separate data centers based on vSphere including an Enterprise Plus license. In the first data center, the problem was solved by using VMware NSX and overlay network. In the second data center, there is currently no VMware NSX implementation in place and no budget for additional licenses.
What should the architect recommend as a potential solution to provide support for additional VLANs?

  • A. Virtual Guest Tagging (VGT)
  • B. vSwitch VLAN Tagging (VST)
  • C. Separate Distributed Virtual Switches (DVS)
  • D. Private VLANs (PVLAN)

Answer: C


NEW QUESTION # 27
An architect is designing a new vSphere platform to meet a list of requirements from the security team.
Which two requirements would be classified as non-functional requirements? (Choose two.)

  • A. Log information must be verbose to support incident resolution
  • B. Critical events generated within the platform must be logged to an external Syslog service
  • C. Data integrity must be ensured
  • D. Migration of virtual machines between hosts must be encrypted
  • E. A common content library must be maintained across all data centers

Answer: A,D


NEW QUESTION # 28
An architect is designing a VMware solution for a customer to meet the following requirements:
The solution must use investments in existing storage array that supports both block and file storage.
The solution must support the ability to migrate workloads between hosts within a cluster.
The solution must support resource management priorities.
The solution must support the ability to connect virtual machines directly to LUNs.
The solution should use existing 32G fabric infrastructure.
There is no budget for additional physical hardware.
Which design decision should the architect make to meet these requirements?

  • A. The ESXi hosts will leverage Fibre Channel over Ethernet (FCoE).
  • B. The ESXi hosts will leverage Fibre Channel (FC).
  • C. The ESXi hosts will leverage NFS.
  • D. The ESXi hosts will leverage iSCSI.

Answer: B

Explanation:
Support the ability to connect virtual machines directly to LUNs, seems to have VMs with RDM, FC supports this type of deployment and so A makes sense. Extra transceivers for FCoE need to be installed, as per budged limited no space to invest on those


NEW QUESTION # 29
During a requirements gathering workshop, the customer provides the following requirement that is pertinent to the design of a new vSphere environment:
The Maximum Tolerable Downtime (MTD) for all Tier 1 applications is one hour.
Which requirement classification is being gathered for the design documentation?

  • A. Manageability
  • B. Performance
  • C. Recoverability
  • D. Availability

Answer: C

Explanation:
MTD - Maximum Tolerable Downtime: Sum of the RTO and WRT, which is the total time required to recover from a disaster and start serving the business again. https://vcdx133.com/2015/01/28/vcdx-availability-explained/


NEW QUESTION # 30
An architect is designing a new vSphere environment to meet the following requirements:
The environment must support 5,000 virtual machines.
The environment will be built initially using 350 hosts.
Which vCenter Server appliance deployment size should the architect specify for the design?

  • A. Medium
  • B. Small
  • C. Tiny
  • D. Large

Answer: D

Explanation:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vcenter.install.doc/GUID-077C7523-E0EA-4922-8D48-C026916323C4.html#:~:text=For%20tiny%20deployment%20size%2C%20deploys%20the%20appliance%20with%203245%20GB,with%203525%20GB%20of%20storage.


NEW QUESTION # 31
A customer provides the following list of requirements for their vSphere platform:
REQ01 The solution should utilize dual network connections to eliminate single points of failure.
REQ02 The solution should allow logs to be retained for a period of 30 days.
REQ03 All user access to the platform should be recorded for audit purposes.
REQ04 The solution should allow the management of multiple ESXi hosts.
REQ05 The solution should allow users to view the remote console of virtual machines.
Which two of the listed requirements would be classified as non-functional requirements? (Choose two.)

  • A. The solution should allow the management of multiple ESXi hosts
  • B. All user access to the platform should be recorded for audit purposes
  • C. The solution should allow logs to be retained for a period of 30 days
  • D. The solution should allow users to view the remote console of virtual machines
  • E. The solution should utilize dual network connections to eliminate single points of failure

Answer: C,E


NEW QUESTION # 32
The architect for a large enterprise is tasked with reviewing a proposed design created by a service partner. Which design elements are expected to be detailed within the physical design section of the documentation?

  • A. A design diagram illustrating the configuration and specific attributes, such as IP addresses
  • B. A solution architecture diagram with the components and data flow
  • C. An entity relationship diagram describing upstream and downstream dependencies for specific service components
  • D. A list of requirements, constraints, and risks

Answer: A

Explanation:
"The physical design is based on the logical design. The physical design includes specific hardware from specific vendors. This design also lists specific configurations for each of the components that are deployed"


NEW QUESTION # 33
An architect is designing a VMware solution for a customer based on the following information:
The solution must use investments in existing storage array that supports both block and file storage.
The solution must support the ability to migrate workloads between hosts within a cluster.
The solution must support resource management priorities.
The solution must support the ability to connect virtual machines directly to LUNs.
The solution should use existing IPv4 based network infrastructure.
There is no budget for additional physical hardware.
Which two design decisions could the architect make to meet these requirements? (Choose two.)

  • A. The ESXi hosts will leverage Fibre Channel over Ethernet (FCoE)
  • B. The ESXi hosts will leverage iSCSI
  • C. The ESXi hosts will leverage NFS 3
  • D. The ESXi hosts will leverage Fibre Channel (FC)
  • E. The ESXi hosts will leverage NFS 4.1

Answer: B,C

Explanation:
https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.storage.doc/GUID-8A929FE4-1207-4CC5-A086-7016D73C328F.html Starting from vSphere 7.0, VMware no longer supports software FCoE in production environments. https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.storage.doc/GUID-6B49866F-7005-4099-84AC-4FB2A1A91F64.html


NEW QUESTION # 34
......

Pass VMware 3V0-21.21 Exam Info and Free Practice Test: https://www.realexamfree.com/3V0-21.21-real-exam-dumps.html

VMware 3V0-21.21 Real Exam Questions and Answers FREE: https://drive.google.com/open?id=1LuPZX-zM8f0lP92Ttkk9alAYfxg20j_M