[2024年10月]更新のNCP-CI-AWSブレーン問題集でNCP-CI-AWS問題で最高得点を目指すため今すぐ試そう [Q23-Q45]

Share

[2024年10月]更新のNCP-CI-AWSブレーン問題集でNCP-CI-AWS問題で最高得点を目指すため今すぐ試そう

NCP-CI-AWS試験問題集でベスト問題集を無料で試そうNCP-CI-AWS試験問題

質問 # 23
Regarding a cloud cluster, which two upgrades can be performed using LCM? (Choose two.)

  • A. NBA
  • B. BIOS
  • C. AHV
  • D. NCC

正解:B、C

解説:
AHV (Answer A):
AHV (Acropolis Hypervisor) can be upgraded using Lifecycle Manager (LCM). LCM simplifies the upgrade process and ensures that all components are updated in a coordinated manner.
BIOS (Answer C):
BIOS upgrades can also be performed using LCM. This helps in maintaining hardware compatibility and performance by ensuring that the latest firmware is installed.
Reference:
Nutanix Lifecycle Manager (LCM) Documentation
Nutanix AHV Upgrade Guide
Nutanix BIOS Upgrade Documentation


質問 # 24
What role is needed to create a cluster?

  • A. Customer Security Administrator
  • B. Cluster Super Admin
  • C. Cluster Administrator
  • D. Customer Administrator

正解:B

解説:
To create a cluster in Nutanix Cloud Integration with AWS, the role needed is Cluster Super Admin.
The Cluster Super Admin role provides the highest level of privileges required to perform critical operations such as creating, managing, and deleting clusters.
This role is essential for overseeing the cluster setup and configuration processes, ensuring the user has full control over the cluster lifecycle.
Reference:
Refer to the Nutanix documentation on roles and permissions for NC2 on AWS for further details on the capabilities and required permissions for cluster creation.


質問 # 25
An administrator is creating and destroying multiple clusters daily for a test/dev environment. The administrator wants ensure that every NC2 on AWS cluster deployed will allow full access from the on-premises CVM subnet.
What is most-efficient way to achive this?

  • A. Create a Custom AWS Network Security Group using a key value of tag:nutanix:clusters:external and set the inbound allow address of the on-premises subnet.
  • B. Modify the UVM Network Security Group of each cluster by setting the inbound allow address of the on-premises subnet.
  • C. Modify the UVM Network Security Group of each cluster by setting the outbound allow address of the on-premises subnet.

正解:A

解説:
D/ Create a Custom AWS Network Security Group using a key of tag:nutanix: clusters:external:cluster-uuid and set the value of the UUID for each deployed cluster. Set the inbound allow address of the on-premises subnet.
Explanation:
To ensure that every NC2 on AWS cluster deployed allows full access from the on-premises CVM subnet efficiently, the administrator should create a custom AWS Network Security Group.
Use a key value of tag:nutanix:clusters:external for the security group, and set the inbound allow address to the on-premises subnet.
This approach leverages AWS tags to manage security group rules dynamically and ensures that the necessary access permissions are applied automatically to all clusters with the specified tag.
This method reduces the need for manual configuration of each cluster's security group, streamlining the process for a test/dev environment where clusters are frequently created and destroyed.
Reference:
Refer to the AWS documentation on Network Security Groups and Nutanix documentation on best practices for securing NC2 clusters.


質問 # 26
An administrator planned to create a new NC2 cluster and chose the existing AWS VPC infrastructure in the workflow. The administrator needs two private subnets to complete the configuration.

  • A. For user VMs and cluster management
  • B. For DNS and NJP management
  • C. For Prism Element and Prism Central management
  • D. For private NAT and Elastic IP management

正解:A

解説:
When creating a new NC2 cluster using an existing AWS VPC infrastructure, two private subnets are needed. These subnets are used as follows:
One private subnet for user VMs, which houses the virtual machines that users interact with.
Another private subnet for cluster management, which is used for internal cluster operations and management tasks, ensuring that management traffic is isolated from user traffic for security and performance reasons.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 27
Which address must AWS Directory Service be able to resolve when deploying a new NC2 cluster?

  • A. gateway-external-api. cloud, nutanix.com
  • B. apikeys.nutanix.com
  • C. dovvnloads.cloud.nutanix.com
  • D. gateway-internal-api.cloud.nutanix.com

正解:A

解説:
When deploying a new NC2 cluster, the AWS Directory Service must be able to resolve the address gateway-external-api.cloud.nutanix.com.
This external API gateway is critical for the NC2 cluster to communicate with Nutanix services for operations such as management, updates, and licensing.
Ensuring that this address can be resolved allows the cluster to interact properly with the Nutanix cloud infrastructure and services.
Reference:
Refer to the Nutanix documentation on network and DNS requirements for NC2 deployments, specifically the addresses that need to be resolvable for proper functionality.


質問 # 28
An administrator needs to understand which of the services implemented on their NC2 AWS deployment will be protected with Cluster protect.
Which service of feature is Cluster Protect able to both protect and recover its associated metadata?

  • A. Files
  • B. Categories
  • C. Object
  • D. VM templates

正解:A、D

解説:
Cluster Protect in an NC2 environment can protect and recover the following services and their associated metadata:
VM Templates: Ensures that templates used for creating virtual machines are backed up and recoverable.
Files: Protects data stored in Nutanix Files, ensuring that file services are backed up and can be restored as needed.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 29
Which statement is true regarding AWS account requirements?

  • A. An AWS root user can be used for any deployment or operations related to NC2.
  • B. AWSCloudFormationFullAccess role is required to create a CloudFormation stack.
  • C. NC2 on AWS uses AWS Secrets Manager for maintaining any stored secrets.
  • D. IAMFullAccess permission gets configuration details for supported AWS resources.

正解:B

解説:
To create a CloudFormation stack, the AWSCloudFormationFullAccess role is required.
This role grants the necessary permissions to create, update, and delete CloudFormation stacks, which are essential for deploying and managing AWS infrastructure using CloudFormation templates.
CloudFormation stacks are often used to automate the deployment of complex infrastructures, including those required for NC2 on AWS.
Proper permissions ensure that the deployment process is seamless and adheres to the security and operational policies of the organization.
Reference:
Refer to the AWS IAM documentation for details on the AWSCloudFormationFullAccess role and Nutanix documentation on prerequisites for deploying NC2 on AWS.


質問 # 30
An administrator is seeking help with an ongoing NC2 issue. After reaching out to Nutanix support, the administrator is introduced to NC2 specialist who can help troubleshoot the problem.

  • A. Add the specialist as an admin user to the organizations.
  • B. Confirm the Support Authorization on the organization is set to Full Access.
  • C. Provide the specialist with the administrator's login credentials.
  • D. Ensure the specialist is assigned the RBAC role with proper permissions.

正解:B、D

解説:
Ensure the specialist is assigned the RBAC role with proper permissions (Answer A):
Role-Based Access Control (RBAC) ensures that the specialist has the necessary permissions to troubleshoot and manage the NC2 environment. This avoids unnecessary privilege escalations and maintains security.
Confirm the Support Authorization on the organization is set to Full Access (Answer C):
Setting the Support Authorization to Full Access allows the Nutanix support specialist to have the required access to investigate and resolve issues in the environment. This is essential for effective troubleshooting.
Reference:
Nutanix RBAC Documentation
Nutanix Support Access Guide


質問 # 31
An administrator has been tasked with deploying a new production NC2 cluster on AWS and is studying the deployment..
AWS supports EC2 bare-metal instances in regions with at least how many partitions?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:D

解説:
AWS supports EC2 bare-metal instances in regions with at least 3 partitions. Partitions in AWS provide high availability and fault tolerance by distributing instances across different hardware to minimize the impact of hardware failures.
Reference:
AWS EC2 Bare Metal Instances Documentation
AWS Regions and Availability Zones


質問 # 32
To deploy NC2 in AWS using an existing VPC, which two AWS resources should be configured beforehand? (Choose two.)

  • A. Placement Group
  • B. Bare-metal EC2 Instance
  • C. Public and Private Subnets
  • D. NAT Gateway

正解:D

解説:
To deploy NC2 in AWS using an existing VPC, the following AWS resources should be configured beforehand:
NAT Gateway: This allows instances in the private subnet to connect to the internet or other AWS services, while preventing the internet from initiating connections with those instances.
Public and Private Subnets: These are necessary to segregate the network traffic. Public subnets provide a direct route to the internet gateway, while private subnets are used for internal resources that do not need direct access to the internet.
Reference:
Nutanix Cloud Clusters on AWS Deployment Guide
Nutanix Support & Insights


質問 # 33
An administrator has been tasked with deploying an NC2 cluster on AWS with the requirement to protect workloads. Which two options are valid to protect the workloads on this cluster? (Choose two.)

  • A. Deploy one-node cluster in another availability zone.
  • B. Deploy a cluster across two availability zones.
  • C. Use an existing on-prem Nutanix cluster as a disaster recovery target.
  • D. Create a second NCZ cluster in a different availability zone.

正解:D

解説:
To protect workloads on an NC2 cluster on AWS, deploying strategies that ensure high availability and disaster recovery are essential. The two valid options are:
Create a Second NC2 Cluster in a Different Availability Zone:
High Availability: Deploying a second NC2 cluster in a different availability zone ensures that workloads can be quickly recovered in case of an availability zone failure.
Disaster Recovery: This setup enables asynchronous replication between clusters, providing a robust disaster recovery solution.
Use an Existing On-Prem Nutanix Cluster as a Disaster Recovery Target:
Hybrid DR: Leveraging an existing on-premises Nutanix cluster for disaster recovery provides a cost-effective and efficient DR solution.
Replication: Set up replication policies to ensure data is consistently copied from the NC2 cluster on AWS to the on-premises cluster.
Why Not Other Options:
One-node cluster in another availability zone: Not a valid DR solution as a single-node cluster cannot provide the required resilience and high availability.
Deploy a cluster across two availability zones: While this can enhance availability, it is not a typical approach for Nutanix clusters which are designed to operate within a single availability zone for simplicity and performance reasons.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Disaster Recovery Best Practices
AWS Availability Zones and Disaster Recovery Documentation


質問 # 34
Administrator has recently deployed an NC2 cluster on AWS in the North Virginia region in availability zone us-east-id. The consuming IPS from a 10.78.2.0/24 range.
The AWS VPC has two available CIDR ranges:
10.78.0.0/16
10.19.101.0/24
The following subnet have been configured in the NC2 AWS VPC:

Which two subnet will show up in the Network configuration of the Prism Element Settings page? (Choose two.)

  • A. VDI
  • B. L2stretch
  • C. DR01
  • D. DR02

正解:B、C

解説:
For the NC2 cluster deployed in the North Virginia region (us-east-id), consuming IPs from the 10.78.2.0/24 range, the subnets configured within the same CIDR range of 10.78.0.0/16 will be recognized.
The subnet DR01 (10.78.2.0/24) is directly within the range of the deployed cluster.
The subnet L2stretch (10.19.101.0/24) is also configured in the NC2 AWS VPC, although not in the immediate range of the cluster, it may show up due to broader network configurations for stretched L2 operations.
Subnets VDI (10.78.130.0/22) and DR02 (10.79.120.0/24), although part of the same VPC, are not directly within the immediate CIDR range or may not be recognized in this specific configuration scenario.
Reference:
Refer to the Nutanix documentation on NC2 AWS VPC subnet configurations and Prism Element settings for detailed guidelines on network visibility and configuration.


質問 # 35
An administrator is attempting to deploy an NC2 cluster.
The cluster configuration is as follows:
* Name - Cluster-1
* Nodes of type i4i.metal
* Replication Factor 2
* Existing VPC resources
* VPC - 10.0.0.0/16
* Subnets:
* Bare metal hosts: 10.0.1.0/24
* User VMs:10.0.2.0/24
* Public: 10.0.3.0/24
During the deployment process, the administrator notices the following alert:

What should the administrator do to ensure the cluster deployment does not fail?

  • A. Modify the administrator's RBAC permissions in the NC2 console.
  • B. Check AWS VPC and subnet quotas for the cloud account.
  • C. Create a new VPC and modify the cluster configuration to use the new VPC.
  • D. Ensure an outbound Internet connection exists from 10.0.1.0/24.

正解:D

解説:
The alert indicates a potential issue with the VPC/Subnet settings, preventing the cluster nodes from contacting Nutanix services.
To resolve this, the administrator needs to ensure that the subnet 10.0.1.0/24, which is assigned for Bare metal hosts, has an outbound Internet connection.
This connection is necessary for the cluster nodes to communicate with external Nutanix services for updates, license validation, and other essential operations.
Verify that there are appropriate route tables and security group rules allowing outbound traffic to the Internet from the 10.0.1.0/24 subnet.
Ensure that there is either an Internet Gateway (IGW) attached to the VPC or a NAT Gateway configured if using private subnets.
Reference:
Refer to the Nutanix documentation and AWS VPC configuration guides to ensure proper Internet connectivity and routing setups.


質問 # 36
An administrator is deploying a new cluster on AWS and would like to ensure the data is encrypted. Due to cost constraints, the deployment will leverage the native local key manager (LKM).
What is the minimal number of nodes needed to support the Nutanix native LKM?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:D

解説:
To support Nutanix's native Local Key Manager (LKM) for data encryption in a cost-effective manner, a minimum of three nodes is required. This ensures that there is enough redundancy and reliability for the encryption services to function properly, complying with best practices for distributed key management.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 37
In which two ways should an NC2 on AWS cluster be hibernated manually? (Choose two.)

  • A. Log into Prism Element navigate to Settings and select Hibernate/Resume.
  • B. Log into NC2 console, find the cluster name and select Hibernate/Resume from the ellipses.
  • C. Log into Prism, Central, navigate to Planning, find hibernate and resume.
  • D. Select the cluster under NC2 console and Select Hibernate/Resume on the cluster sur page.

正解:B、D


質問 # 38
An administrator has deployed an NC2 cluster on AWS to an existing environment for VDI.
Afterwards, the corporate security teams direct the administrator to reuse an existing AWS subnet, 10.79.4.0/24 that has two EC2 instances: EC2-1 (10.79.4.200) and EC2-2 (10.79.4.201). The security team indicates that this directive is to avoid overlap with the AHV IPAM.
Which two configuration actions should the administrator take to ensure there are no configuration issues? (Choose two.)

  • A. aCLI > net.add_to_ip_bfacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201
  • B. aCLI > net.de/ete_from_ip_blacklist 10.79.4.200 aCLI > net.defete_fromjp_blacklist 10.79.4.201
  • C. Configure the AHV JPAM to use DHCP range 10.79.4.2 -10.79.4.253.
  • D. Deploy two VMs on the NC2 cluster and assign 10.79.4.200 and 10.79.4.201 as the assigned IPs in Prism Element

正解:A、C

解説:
To avoid IP address conflicts and ensure there are no configuration issues when reusing an existing AWS subnet, the administrator should take the following actions:
aCLI > net.add_to_ip_blacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201 (Answer A):
This command adds the specified IP addresses to the blacklist, preventing AHV IPAM from assigning these addresses to any VMs. This ensures that the existing EC2 instances with IPs 10.79.4.200 and 10.79.4.201 are not allocated to other VMs in the NC2 cluster.
Configure the AHV IPAM to use DHCP range 10.79.4.2 -10.79.4.253 (Answer D):
By configuring the AHV IPAM to use a specific DHCP range, you ensure that the IP addresses assigned to the EC2 instances (10.79.4.200 and 10.79.4.201) are not included in the DHCP pool. This prevents IP address conflicts within the subnet.
Reference:
Nutanix aCLI Reference
Nutanix NC2 on AWS Documentation
AWS VPC and Subnet Basics


質問 # 39
An administrator needs the permissions to create and manage multiple organizations and clusters in NC2, as well as manage user access for the entire company.
What role should be assigned to meet the minimum requirements of this task?

  • A. Customer Security Administrator
  • B. Customer Administrator
  • C. Organization Administrator
  • D. Cluster Administrator

正解:B

解説:
The role of "Customer Administrator" in Nutanix Cloud Integration with AWS (NC2) is designed to meet the requirements of creating and managing multiple organizations and clusters, as well as managing user access for the entire company.
Roles and Permissions:
Customer Administrator: This role has the broadest set of permissions, allowing the user to create and manage organizations, clusters, and user access across the entire company. It encompasses administrative control over multiple aspects of the NC2 environment.
Capabilities:
Organization Management: Ability to create and manage multiple organizations.
Cluster Management: Full control over creating, configuring, and managing clusters.
User Access Management: Manage user roles and permissions, ensuring that the right individuals have access to the necessary resources.
Why Not Other Roles:
Organization Administrator: Limited to managing organizations but not clusters and user access at the company level.
Customer Security Administrator: Focuses on security aspects, lacking broader administrative capabilities.
Cluster Administrator: Limited to managing clusters without the ability to manage organizations and user access comprehensively.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Role-Based Access Control Documentation


質問 # 40
An administrator is planning a new NC2 on AWS deployment. The workload VMs to be deployed on the new cluster have low storage and memory, but high CPU frequency (>3.0 GHz) requirements.
The administrate! has also been tasked with ensuring that the cluster nodes have the lowest number of CPU cores to reduce application licensing requirements.
Which node type will satisfy this new deployment?

  • A. i4i.metal
  • B. m5d.metal
  • C. zld.metal
  • D. i3.metal

正解:D

解説:
For a new NC2 on AWS deployment where workload VMs have low storage and memory requirements but high CPU frequency (>3.0 GHz) requirements, and the goal is to minimize the number of CPU cores to reduce application licensing costs, the i3.metal instance type is the most suitable.
i3.metal:
High CPU Frequency: i3.metal instances offer high-frequency Intel Xeon processors (up to 3.1 GHz) which meet the high CPU frequency requirement.
Low Storage and Memory: These instances come with a balanced amount of storage and memory, suitable for workloads with low requirements in these areas.
Minimized CPU Cores: i3.metal instances have fewer CPU cores compared to other high-frequency instances like i4i.metal, making them ideal for minimizing application licensing costs.
Other Instance Types:
z1d.metal: While also offering high CPU frequency, these instances typically come with a higher core count and more memory, which may not be optimal for minimizing licensing costs.
i4i.metal: Designed for I/O intensive applications with higher core counts.
m5d.metal: Balanced instance type but with more cores and not as high CPU frequency as required.
Reference:
AWS EC2 Instance Types Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Instance Selection


質問 # 41
An organization plans to use the Cluster Protect feature to protect the cluster data.
Which license will satisfy this requirement?

  • A. AOS Ultimate or NCI Ultimate
  • B. NCI Pro or AOS Ultimate
  • C. AOS Pro or AOS Ultimate
  • D. AOS Pro or NCI Pro

正解:A

解説:
The Cluster Protect feature, which provides data protection and disaster recovery capabilities for Nutanix clusters, requires either the AOS Ultimate or NCI Ultimate license. These licenses include the necessary features to leverage Cluster Protect for ensuring data resilience and recovery.
Reference:
Nutanix Documentation - Cluster Protection Features
Nutanix AOS 6.7 New Features


質問 # 42
A company wants to use Nutanix NC2 to burst VDI resources to the AWS cloud. The VDI workloads requires GPU accelation.
Which solution meets the company's requirements?

  • A. AN36P nodes
  • B. AN36 nodes
  • C. m6g.metal nodes
  • D. g4dn.metal nodes

正解:D

解説:
For VDI workloads that require GPU acceleration, the g4dn.metal nodes are the appropriate choice. These instances are equipped with NVIDIA T4 GPUs, which are well-suited for graphics-intensive applications such as VDI workloads that need GPU acceleration. Other node types like AN36P, m6g.metal, or AN36 do not provide the necessary GPU capabilities.
Reference:
Nutanix Support & Insights - GPU support in AWS


質問 # 43
An administrator has recently deployed an NC2 on AWS cluster in the North Virginia region in availability zone us-east-1z. The clusters UUID is 0005F487-4962-91EA-4C98-C4284D123835.
The cluster is consuming IPs from a 10.78.2.0/24 range.
The AWS VPC has these available CIDR ranges:
* 70.73.0.0/16
* 10.79.107.0/24
* 10.0.0.0/22
The following subnets have been configured in the NC2 AWS VPC:

The following tags have been applied to a Custom Network Security Group:

The Custom Network Security Group is allowing all inbound traffic from the 10.0.0.0/22 network. Which two subnets would be able to receive inbound traffic from AWS instances on a 10.0.0.0/22 network segment"? (Choose two.)

  • A. VDl
  • B. SQL
  • C. Server01
  • D. Tier01

正解:C、D

解説:
To determine which subnets would be able to receive inbound traffic from AWS instances on a 10.0.0.0/22 network segment, we need to look at the configured subnets and their CIDR ranges, as well as the custom network security group's inbound rules.
Available CIDR ranges in VPC:
70.73.0.0/16
10.79.107.0/24
10.0.0.0/22
Configured Subnets in NC2 AWS VPC:
VDI: 10.78.130.0/22
SQL: 10.78.3.0/24
Server01: 10.78.2.0/24
Server02: 10.79.120.0/24
Tier01: 10.19.101.0/24
Custom Network Security Group Inbound Rule:
Allows all inbound traffic from 10.0.0.0/22.
Given that the custom network security group is allowing inbound traffic from the 10.0.0.0/22 network, we need to identify which of the configured subnets fall within this allowed range.
Analysis:
The subnets 10.78.130.0/22, 10.78.3.0/24, 10.78.2.0/24, 10.79.120.0/24, and 10.19.101.0/24 do not overlap with 10.0.0.0/22. Therefore, none of these subnets would naturally fall within the 10.0.0.0/22 range directly.
However, since the question is about receiving inbound traffic from the 10.0.0.0/22 network and considering security group rules, all subnets mentioned can technically receive traffic if the inbound rules are configured correctly, but since we are strictly asked about the configuration from the image and the overlap in the ranges:
Server01 (10.78.2.0/24) and Tier01 (10.19.101.0/24) will receive traffic because their CIDR ranges do not conflict with the 10.0.0.0/22 range, thus allowing traffic without additional restrictions.
Reference:
Nutanix Clusters on AWS Administration Guide
AWS VPC and Subnet documentation
Network Security Group rules configuration in Nutanix documentation


質問 # 44
An administrator seeks to ensure that the newly created NC2 organization named Finance can only deploy clusters into certain cloud regions.
What action should the administrator take to do this?

  • A. Configure IAM permission in cloud accounts to restrict access to certain regions.
  • B. Configure RBAC roles on the Finance NC2 organization to allow access to regions.
  • C. Open a support ticket with Nutanix to whitelist the allowed regions for the Finance NC2 organization.
  • D. Specify allowed regions when configuring a cloud account for the Finance NC2 organization.

正解:D

解説:
To ensure that the newly created NC2 organization named Finance can only deploy clusters into certain cloud regions, the administrator should specify the allowed regions during the cloud account configuration.
This action restricts the regions available for cluster deployment, ensuring compliance with organizational policies or regulatory requirements.
The allowed regions can be set in the cloud account settings associated with the Finance NC2 organization, defining the geographical scope of operations.
Reference:
Refer to the Nutanix documentation on NC2 cloud account configuration and region restrictions.


質問 # 45
......

検証済みのNCP-CI-AWSテスト問題集と解答には的確な77問題と解答があります:https://www.jpntest.com/shiken/NCP-CI-AWS-mondaishu

最新版を今すぐ試そうNCP-CI-AWS認定有効な試験問題集:https://drive.google.com/open?id=1zH9zJCNSQYbC4ve4zfQQws7FVA2Z6oUZ

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡