[2024年10月14日] 有効なNCP-CI-AWSテスト解答NCP-CI-AWS試験PDF問題を試そう [Q31-Q56]

Share

[2024年10月14日] 有効なNCP-CI-AWSテスト解答NCP-CI-AWS試験PDF問題を試そう

有効なNutanix Certified Professional NCP-CI-AWS問題集はあなたの合格を必ず保証します

質問 # 31
What is the purpose of an organization in the NC2 console?

  • A. To map the on-premises Prism Central environment
  • B. To segregate clusters based on specific requirements
  • C. To Link with a Public Cloud account
  • D. To link with NC2 subscription plans

正解:B

解説:
In the NC2 console, an organization is used to segregate clusters based on specific requirements. This segregation allows administrators to manage clusters more effectively by grouping them according to business units, projects, or other criteria. This organizational structure helps in maintaining clear boundaries and applying specific policies or permissions to different clusters within the same NC2 environment.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix Certified Professional - Cloud Integration - AWS


質問 # 32
An administrator needs to create user VM subnets for multiple NC2 clusters in AWS.
What would be the best approach to take?

  • A. Create guest-VM subnets to be shared by all clusters.
  • B. Use the cluster management subnet dedicated to each cluster.
  • C. Create guest-VM VNets for each cluster.
  • D. Create guest-VM subnets for each cluster.

正解:D

解説:
When creating user VM subnets for multiple NC2 clusters in AWS, the best approach is to create guest-VM subnets for each cluster. This ensures that each cluster has its own dedicated subnets, which simplifies network management and avoids potential IP conflicts.
Advantages of Dedicated Subnets:
Isolation: Each cluster operates in its own subnet, providing better isolation and security.
Management: Easier to manage and troubleshoot network issues when each cluster has its own subnets.
Scalability: More scalable as each subnet can be managed and expanded independently.
Steps to Create Guest-VM Subnets:
Identify the IP range for each subnet.
In the AWS VPC console, create a new subnet for each cluster using the identified IP ranges.
Associate the new subnets with the respective clusters during or after the cluster deployment process.
Why Not Shared Subnets:
Shared subnets could lead to IP conflicts and make network management more complex, especially as the number of clusters grows.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS VPC Subnet Creation Documentation


質問 # 33
Which two features or services can an administrator ensure are protected by cluster protect within an NC2 environment? (Choose two.)

  • A. Nutanix Files
  • B. VM Templates
  • C. Flow Network Security
  • D. Virtual Machine Disks

正解:A、D

解説:
Within an NC2 environment, the Cluster Protect feature can ensure the protection of:
Nutanix Files: This provides file services within the Nutanix ecosystem, and Cluster Protect can safeguard the data stored in Nutanix Files.
Virtual Machine Disks: This ensures that the data stored on virtual machine disks is protected, providing backup and recovery options for the virtual machines running within the cluster.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix AOS 6.7 Documentation


質問 # 34
An administrator is experiencing problems with several operations, including VM IP address assignment validations, VM power-on and VM power-off operations.
Whenever a related operation is performed, an alert is generated in the NC2 console indicating that the Cloud API endpoints are unavailable.
The issue was further investigated and it was determined that NC2 is unable to make API calls to the underlying cloud infrastructure due to network connectivity misconfigurations.
Which two connectivity misconfigurations could be causing this issue? (Choose two.)

  • A. IAM roles and policies are incorrectly configured.
  • B. AWS VPC endpoints are used for connectivity to AWS services.
  • C. Subnets are connected to the Internet via NAT gateways.
  • D. Route tables for cloud subnets contain incorrect route entries.

正解:A、D

解説:
Route tables for cloud subnets contain incorrect route entries:
If the route tables associated with the cloud subnets contain incorrect route entries, the NC2 cluster might not be able to reach the necessary AWS services or endpoints. Correct route entries are crucial for ensuring proper communication between the NC2 cluster and the underlying AWS infrastructure.
IAM roles and policies are incorrectly configured:
Incorrectly configured IAM roles and policies can prevent NC2 from making API calls to AWS services. These roles and policies must be properly set up to allow the necessary permissions for NC2 to interact with AWS resources and perform required operations.
Reference:
Refer to the AWS documentation on route table configuration and IAM roles and policies, and Nutanix documentation on NC2 cloud connectivity and permissions.


質問 # 35
A company has purchased Nutanix AOS Pro licensing.
Which add-on products are available with this license tier in the AWS cluster deployment wizard?

  • A. Self-Service and Cost Governance
  • B. EUC
  • C. Files, Advanced Replication, and DARE
  • D. Nus

正解:C

解説:
With the Nutanix AOS Pro licensing, several advanced features and add-on products become available. Specifically, in the AWS cluster deployment wizard, the following add-ons are available:
Files:
Nutanix Files provides a software-defined, scale-out file storage solution that simplifies the management and scaling of unstructured data.
Advanced Replication:
Advanced Replication features in Nutanix include synchronous and asynchronous replication capabilities, allowing for robust disaster recovery and data protection solutions.
DARE (Data-At-Rest Encryption):
DARE ensures that all data stored on Nutanix clusters is encrypted, providing a higher level of security for sensitive information.
These features are included in the AOS Pro licensing tier, offering enhanced data management, protection, and security capabilities.
Reference:
Nutanix Licensing Guide
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Advanced Features


質問 # 36
An administrator is deploying a new NC2 cluster on AWS and needs to ensure full connectivity is established between the company's on-premises datacenter and the AWS cloud.
Which two AWS offering will satisfy this requirement? (Choose two.)

  • A. AWS VPN
  • B. ExpressRoute
  • C. Direct Connect
  • D. Dedicated interconnect

正解:A、C

解説:
To establish full connectivity between the company's on-premises datacenter and the AWS cloud, the following AWS offerings will satisfy this requirement:
AWS VPN: This service allows you to create a secure connection between your on-premises network or other remote network and your AWS VPC using an IPsec VPN tunnel. It is suitable for low to moderate bandwidth requirements and provides secure, encrypted connections.
Direct Connect: AWS Direct Connect is a dedicated network connection from your premises to AWS. It provides a private, high-bandwidth, low-latency connection which is ideal for high-throughput applications and workloads that need consistent network performance.
Reference:
AWS VPN Documentation
AWS Direct Connect Documentation


質問 # 37
An administrator is tasked with adding an AWS account to the NC2 console. A requirement is to configure an AWS IAM user with the appropriate permissions.
Which permission must be assigned to the user?

  • A. lAMReadOnlyAccess
  • B. AmazonEC2ReadOnlyAccess
  • C. AmazonEC2FullAccess
  • D. lAMFullAccess

正解:C

解説:
To add an AWS account to the NC2 console, an AWS IAM user needs to be configured with the appropriate permissions to manage the EC2 resources. The required permission for the IAM user includes full access to manage EC2 instances, volumes, and related resources.
AmazonEC2FullAccess:
This permission grants full access to all EC2 resources, including the ability to create, modify, and delete instances, volumes, security groups, and more.
Essential for NC2 operations to manage the lifecycle of EC2 instances and associated components within the AWS environment.
Why Not Other Permissions:
IAMFullAccess: Grants full access to IAM resources but not specifically needed for EC2 operations.
IAMReadOnlyAccess: Only provides read access to IAM resources, insufficient for managing EC2 instances.
AmazonEC2ReadOnlyAccess: Provides read-only access to EC2 resources, insufficient for creating or modifying instances and other resources.
Reference:
AWS IAM Policies Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for IAM User Permissions


質問 # 38
A company has a large scale AWS deployment and has just finished installing their first NC2 on AWS cluster. The new cluster is now running workloads in production.
The cluster is configured with:
* 16 Nodes
* 8 Subnets
* 200 User VMs per subnet
* Nutanix Files
An administrator has been tasked with installing an EC2 instance on one of the subnets that is also used by the Nutanix, When the EC2 instance is powered on, an IP conflict occurs.
What action should the administrator take to resolve this issue?

  • A. The IP address used by the EC2 instance should be blocked / excluded from IPAM.
  • B. The IP address used by the NC2 VM should be blocked /excluded from EC2.
  • C. Assign an elastic IP to the EC2 instance and reboot.
  • D. The Instance Metadata of the NC2 instance needs to have the address reserved.

正解:B

解説:
To resolve the IP conflict issue when an EC2 instance is powered on in a subnet also used by Nutanix NC2, the administrator should block or exclude the IP address used by the NC2 VM from being assigned to EC2 instances. This can be done by configuring the IP address management (IPAM) settings to ensure that the specific IP addresses allocated to the NC2 VMs are not used by EC2 instances, preventing IP conflicts and ensuring smooth operation of both environments.
Reference:
Nutanix Cloud Clusters on AWS Deployment Guide
Nutanix Support & Insights


質問 # 39
When selecting the NC2 subscription plan from the Nutanix Billing portal, which options are available.

  • A. Reserved Instances, Cloud Provider Credits, Bring your own License (BYOL)
  • B. Pay-as-you-Go (PayG), Bring your own License (BYOL)
  • C. Pay-as-you-Go (PayG), Cloud Provider Credits, Bring your own License (BYOL)
  • D. Reserved Instances, Bring your own License (BYOL)

正解:B

解説:
When selecting the NC2 subscription plan from the Nutanix Billing portal, the available options include:
Pay-as-you-Go (PayG): A flexible payment option where users are billed based on their actual usage, providing cost efficiency for variable workloads.
Bring your own License (BYOL): Allows users to utilize existing Nutanix licenses they have purchased, offering a cost-effective way to leverage existing investments in Nutanix software.
Reference:
Refer to the Nutanix billing and subscription documentation for detailed descriptions of subscription plans and their benefits.


質問 # 40
Which statement is true regarding AWS account requirements?

  • A. AWSCloudFormationFullAccess role is required to create a CloudFormation stack.
  • B. An AWS root user can be used for any deployment or operations related to NC2.
  • C. IAMFullAccess permission gets configuration details for supported AWS resources.
  • D. NC2 on AWS uses AWS Secrets Manager for maintaining any stored secrets.

正解:A

解説:
To create a CloudFormation stack, the AWSCloudFormationFullAccess role is required.
This role grants the necessary permissions to create, update, and delete CloudFormation stacks, which are essential for deploying and managing AWS infrastructure using CloudFormation templates.
CloudFormation stacks are often used to automate the deployment of complex infrastructures, including those required for NC2 on AWS.
Proper permissions ensure that the deployment process is seamless and adheres to the security and operational policies of the organization.
Reference:
Refer to the AWS IAM documentation for details on the AWSCloudFormationFullAccess role and Nutanix documentation on prerequisites for deploying NC2 on AWS.


質問 # 41
An administrator has deployed NC2 on AWS. The cluster deployment completed successfully.
After deployment, the administrator created a subnet in AWS, added it as a network in Prism Element, deployed Prism Central using the newly-configured network, and registered the cloud cluster with it.
The on-premises network and AWS are connected via a Site-to-Site VPN. Cluster nodes, CVM, and Prism Central can communicate with each other, but cannot be accessed from the on-premises network.
What two issues might be the cause of this problem? (Choose two.)

  • A. Traffic from the on-premises network is not permitted by VM and Management security groups.
  • B. The AHV firewall is blocking traffic from the on-premises network.
  • C. AWS Direct Connect must be used to establish connection between AWS and on-premises
  • D. The AWS VPC traffic is blocked by a firewall in the on-premises network.

正解:A、D

解説:
Traffic from the on-premises network is not permitted by VM and Management security groups:
Ensure that the security groups assigned to the VMs and management interfaces in AWS allow inbound traffic from the on-premises network. Without appropriate security group rules, the traffic will be blocked.
The AWS VPC traffic is blocked by a firewall in the on-premises network:
Check if the firewall on the on-premises network is configured to allow traffic from the AWS VPC. Firewalls may have restrictive rules that block incoming traffic, preventing communication.
Reference:
Refer to AWS documentation on security groups and firewalls and Nutanix documentation on configuring networking for NC2 clusters.


質問 # 42
An administrator has recently deployed an NC2 on AWS cluster in the North Virginia region in availability zone us-east-1z. The clusters UUID is 0005F487-4962-91EA-4C98-C4284D123835.
The cluster is consuming IPs from a 10.78.2.0/24 range.
The AWS VPC has these available CIDR ranges:
* 70.73.0.0/16
* 10.79.107.0/24
* 10.0.0.0/22
The following subnets have been configured in the NC2 AWS VPC:

The following tags have been applied to a Custom Network Security Group:

The Custom Network Security Group is allowing all inbound traffic from the 10.0.0.0/22 network. Which two subnets would be able to receive inbound traffic from AWS instances on a 10.0.0.0/22 network segment"? (Choose two.)

  • A. Tier01
  • B. SQL
  • C. VDl
  • D. Server01

正解:A、D

解説:
To determine which subnets would be able to receive inbound traffic from AWS instances on a 10.0.0.0/22 network segment, we need to look at the configured subnets and their CIDR ranges, as well as the custom network security group's inbound rules.
Available CIDR ranges in VPC:
70.73.0.0/16
10.79.107.0/24
10.0.0.0/22
Configured Subnets in NC2 AWS VPC:
VDI: 10.78.130.0/22
SQL: 10.78.3.0/24
Server01: 10.78.2.0/24
Server02: 10.79.120.0/24
Tier01: 10.19.101.0/24
Custom Network Security Group Inbound Rule:
Allows all inbound traffic from 10.0.0.0/22.
Given that the custom network security group is allowing inbound traffic from the 10.0.0.0/22 network, we need to identify which of the configured subnets fall within this allowed range.
Analysis:
The subnets 10.78.130.0/22, 10.78.3.0/24, 10.78.2.0/24, 10.79.120.0/24, and 10.19.101.0/24 do not overlap with 10.0.0.0/22. Therefore, none of these subnets would naturally fall within the 10.0.0.0/22 range directly.
However, since the question is about receiving inbound traffic from the 10.0.0.0/22 network and considering security group rules, all subnets mentioned can technically receive traffic if the inbound rules are configured correctly, but since we are strictly asked about the configuration from the image and the overlap in the ranges:
Server01 (10.78.2.0/24) and Tier01 (10.19.101.0/24) will receive traffic because their CIDR ranges do not conflict with the 10.0.0.0/22 range, thus allowing traffic without additional restrictions.
Reference:
Nutanix Clusters on AWS Administration Guide
AWS VPC and Subnet documentation
Network Security Group rules configuration in Nutanix documentation


質問 # 43
An administrator has noticed the company's NC2 free trial expired 60 days ago.
What should the administrator do to continue using all of the NC2 features on existing clusters?

  • A. Contact Nutanix support to redeploy the cluster.
  • B. Switch to a paid subscription plan.
  • C. Nothing. The clusters will have full feature support.
  • D. Contact the AWS cloud vendor.

正解:B

解説:
After the NC2 free trial expires, to continue using all features of NC2 on existing clusters, the administrator needs to switch to a paid subscription plan.
A paid subscription ensures uninterrupted access to the full range of features and support for NC2 clusters.
Without switching to a paid plan, the features might be limited, and support may not be available, impacting the cluster's operations and management.
Reference:
Refer to the Nutanix billing and subscription documentation for details on switching from a trial to a paid plan and the benefits associated with paid subscriptions.


質問 # 44
preparing the landing zone networking resources for a Nutanix cluster on AWS. The administrator has created a VPC with two private subnets: one for cluster management and one for user VMs.
What additional subnet must the administrator create?

  • A. Public subnet for S3 access
  • B. Private subnet for VPN gateway
  • C. Private subnet for Prism Central
  • D. Public subnet for Internet access

正解:D

解説:
When setting up a landing zone for Nutanix clusters on AWS, having only private subnets for cluster management and user VMs is not sufficient for full cluster functionality. Nutanix clusters often need to communicate with the internet for updates, patches, and other cloud services.
VPC Configuration:
The VPC already has two private subnets (one for cluster management and one for user VMs).
Additional Requirements:
To access public services like S3 or for the cluster nodes to reach Nutanix services for updates, a public subnet is essential.
Why Public Subnet for Internet Access?:
A public subnet allows resources within it to communicate directly with the internet, which is necessary for accessing Nutanix's update servers, applying patches, and other maintenance tasks.
This subnet typically includes an internet gateway, enabling instances in the public subnet to receive and send traffic directly to the internet.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS Networking Best Practices
Nutanix Networking and Subnet Configuration Guidelines


質問 # 45
An administrator has deployed an NC2 cluster on AWS to an existing environment for VDI.
Afterwards, the corporate security teams direct the administrator to reuse an existing AWS subnet, 10.79.4.0/24 that has two EC2 instances: EC2-1 (10.79.4.200) and EC2-2 (10.79.4.201). The security team indicates that this directive is to avoid overlap with the AHV IPAM.
Which two configuration actions should the administrator take to ensure there are no configuration issues? (Choose two.)

  • A. aCLI > net.de/ete_from_ip_blacklist 10.79.4.200 aCLI > net.defete_fromjp_blacklist 10.79.4.201
  • B. Deploy two VMs on the NC2 cluster and assign 10.79.4.200 and 10.79.4.201 as the assigned IPs in Prism Element
  • C. Configure the AHV JPAM to use DHCP range 10.79.4.2 -10.79.4.253.
  • D. aCLI > net.add_to_ip_bfacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201

正解:C、D

解説:
To avoid IP address conflicts and ensure there are no configuration issues when reusing an existing AWS subnet, the administrator should take the following actions:
aCLI > net.add_to_ip_blacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201 (Answer A):
This command adds the specified IP addresses to the blacklist, preventing AHV IPAM from assigning these addresses to any VMs. This ensures that the existing EC2 instances with IPs 10.79.4.200 and 10.79.4.201 are not allocated to other VMs in the NC2 cluster.
Configure the AHV IPAM to use DHCP range 10.79.4.2 -10.79.4.253 (Answer D):
By configuring the AHV IPAM to use a specific DHCP range, you ensure that the IP addresses assigned to the EC2 instances (10.79.4.200 and 10.79.4.201) are not included in the DHCP pool. This prevents IP address conflicts within the subnet.
Reference:
Nutanix aCLI Reference
Nutanix NC2 on AWS Documentation
AWS VPC and Subnet Basics


質問 # 46
Regarding a cloud cluster, which two upgrades can be performed using LCM? (Choose two.)

  • A. NCC
  • B. NBA
  • C. BIOS
  • D. AHV

正解:C、D

解説:
AHV (Answer A):
AHV (Acropolis Hypervisor) can be upgraded using Lifecycle Manager (LCM). LCM simplifies the upgrade process and ensures that all components are updated in a coordinated manner.
BIOS (Answer C):
BIOS upgrades can also be performed using LCM. This helps in maintaining hardware compatibility and performance by ensuring that the latest firmware is installed.
Reference:
Nutanix Lifecycle Manager (LCM) Documentation
Nutanix AHV Upgrade Guide
Nutanix BIOS Upgrade Documentation


質問 # 47
To manually create an AWS VPC with Public access to Prism Element for testing purposes, Which components must be created?

  • A. VPC, Delegated Subnets, Route Tables, NAT Gateway, Internet Gateway, Load balancer
  • B. VPC Subnets Route Tables NAT Gateway, Internet Gateway, Load balancer
  • C. VPC Subnets Route subnets, Route Tables, NAT Gateway, Internet Gateway, VPN
  • D. VPC, Delegated Subnets, Route Tables, NAT Gateway, vNets, Load balancer

正解:A

解説:
To manually create an AWS VPC with Public access to Prism Element for testing purposes, the following components must be created:
VPC: A Virtual Private Cloud to provide an isolated network for the resources.
Delegated Subnets: Subnets within the VPC to segment the network and allocate IP ranges.
Route Tables: To define routing rules for the subnets to ensure proper traffic flow.
NAT Gateway: To enable instances in the private subnets to access the internet.
Internet Gateway: To allow direct internet access to instances in the public subnets.
Load Balancer: To distribute traffic across multiple instances for improved availability and redundancy.
Reference:
Refer to the AWS documentation on VPC creation and Nutanix documentation on network setup for Prism Element access.


質問 # 48
Exhibit.

What does the exhibit indicate?

  • A. Replication in error state
  • B. Replication in paused state
  • C. No ongoing replication
  • D. Ongoing replication

正解:C

解説:
The exhibit indicates a replication operation with specific details about the protection domain, remote site, and snapshot. Key points to note are:
Bytes Completed: 0 bytes completed.
Complete Percent: 0.0%
Paused: false
Aborted: false
Given these details:
No ongoing replication: The operation has started, but there is no progress in terms of bytes completed or percentage completed. Since the status shows 0 bytes and 0 percent completed, it indicates that no data has been replicated yet.
Reference:
Nutanix Protection Domain and Replication Documentation
Nutanix Best Practices for Monitoring Replication


質問 # 49
An administrator needs to backup Prism Central configuration data to an Amazon S3 bucket.
Which pcdr-cli command parameters is needed to satisfy this task?

  • A. list-protection-targets
  • B. recover
  • C. deployment-info
  • D. protect

正解:D

解説:
To backup Prism Central configuration data to an Amazon S3 bucket, the pcdr-cli command with the protect parameter is used. This parameter is specifically designed for creating protection policies and backing up Prism Central data.
Reference:
Nutanix Prism Central Documentation
Nutanix pcdr-cli Command Reference


質問 # 50
Which two options are prerequisites for deploying an NC2 on AWS cluster? (Choose two.)

  • A. A my.nutanix.com account
  • B. A valid CIDR range
  • C. AWS Direct Connect
  • D. An on-premises Prism Central environment

正解:A、B

解説:
A valid CIDR range: A CIDR (Classless Inter-Domain Routing) range is necessary for creating the subnets within the VPC. This range defines the IP address space for the cluster and its components.
A my.nutanix.com account: This account is required to access Nutanix services, including the NC2 console, manage licenses, and perform other administrative tasks.
AWS Direct Connect and an on-premises Prism Central environment are not prerequisites for deploying an NC2 on AWS cluster. While Direct Connect can be used for enhanced network performance and connectivity, it is not a requirement for deployment. Similarly, having an on-premises Prism Central environment is not mandatory for NC2 deployment on AWS.
Reference:
Refer to the Nutanix documentation on NC2 prerequisites and setup guides, and AWS documentation on VPC and subnet creation.


質問 # 51
An administrator is planning a new NC2 on AWS deployment. The workload VMs to be deployed on the new cluster have low storage and memory, but high CPU frequency (>3.0 GHz) requirements.
The administrate! has also been tasked with ensuring that the cluster nodes have the lowest number of CPU cores to reduce application licensing requirements.
Which node type will satisfy this new deployment?

  • A. i4i.metal
  • B. i3.metal
  • C. zld.metal
  • D. m5d.metal

正解:B

解説:
For a new NC2 on AWS deployment where workload VMs have low storage and memory requirements but high CPU frequency (>3.0 GHz) requirements, and the goal is to minimize the number of CPU cores to reduce application licensing costs, the i3.metal instance type is the most suitable.
i3.metal:
High CPU Frequency: i3.metal instances offer high-frequency Intel Xeon processors (up to 3.1 GHz) which meet the high CPU frequency requirement.
Low Storage and Memory: These instances come with a balanced amount of storage and memory, suitable for workloads with low requirements in these areas.
Minimized CPU Cores: i3.metal instances have fewer CPU cores compared to other high-frequency instances like i4i.metal, making them ideal for minimizing application licensing costs.
Other Instance Types:
z1d.metal: While also offering high CPU frequency, these instances typically come with a higher core count and more memory, which may not be optimal for minimizing licensing costs.
i4i.metal: Designed for I/O intensive applications with higher core counts.
m5d.metal: Balanced instance type but with more cores and not as high CPU frequency as required.
Reference:
AWS EC2 Instance Types Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Instance Selection


質問 # 52
An administrator has created an NC2 cluster on AWS, but the NC2 console has issued this alert:

Which two scenarios could have resulted in the cluster creation failure? (Choose two.)

  • A. Insufficient permissions
  • B. Bad Terraform (TF) state in provisioning
  • C. AWS Quota exceeded/instance limit exceeded
  • D. No available AWS credits

正解:A、C

解説:
The error message in the image indicates that the cluster creation failed due to reaching the maximum retries for provisioning cluster nodes. Here are two possible scenarios that could lead to this issue:
Insufficient Permissions (Answer B):
If the AWS user or role used to create the cluster does not have sufficient permissions, it can result in failures during the provisioning process. Proper IAM policies must be attached to ensure that the necessary actions can be performed, such as launching instances, creating VPCs, or managing networking components.
AWS Quota Exceeded/Instance Limit Exceeded (Answer D):
AWS imposes quotas and limits on the number of instances and other resources that can be created within an account. If these quotas are exceeded, new instances cannot be provisioned, causing the cluster creation to fail. This can be resolved by requesting a quota increase from AWS.
Reference:
Nutanix Knowledge Base Article 9774
AWS Service Quotas
Nutanix NC2 on AWS Documentation


質問 # 53
An administrator is deploying an NC2 cluster into an existing AWS VPC.
The cluster deployment fails, with the following error message:

Why has the deployment failed?

  • A. The administrator has not configured the Security Group to manage the shared subnet.
  • B. Outbound Internet access is not configured on the VPC.
  • C. Shared subnets are not supported for Nutanix clusters.
  • D. The administrator has not created the necessary Security Group.

正解:D

解説:
The administrator has not created the necessary Security Group:
The error message indicates that the creation of network interfaces in a shared subnet requires specifying a security group. This means that the necessary security group has not been created or assigned to the network interfaces.
Creating the appropriate security group and ensuring it is associated with the network interfaces during cluster deployment should resolve this issue.
Reference:
Refer to AWS documentation on security groups and network interface configuration and Nutanix documentation on prerequisites for deploying NC2 clusters in an existing AWS VPC.


質問 # 54
An administrator planned to create a new NC2 cluster and chose the existing AWS VPC infrastructure in the workflow. The administrator needs two private subnets to complete the configuration.

  • A. For user VMs and cluster management
  • B. For DNS and NJP management
  • C. For private NAT and Elastic IP management
  • D. For Prism Element and Prism Central management

正解:A

解説:
When creating a new NC2 cluster using an existing AWS VPC infrastructure, two private subnets are needed. These subnets are used as follows:
One private subnet for user VMs, which houses the virtual machines that users interact with.
Another private subnet for cluster management, which is used for internal cluster operations and management tasks, ensuring that management traffic is isolated from user traffic for security and performance reasons.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 55
An administrator is deploying a new cluster on AWS and would like to ensure the data is encrypted. Due to cost constraints, the deployment will leverage the native local key manager (LKM).
What is the minimal number of nodes needed to support the Nutanix native LKM?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:C

解説:
To support Nutanix's native Local Key Manager (LKM) for data encryption in a cost-effective manner, a minimum of three nodes is required. This ensures that there is enough redundancy and reliability for the encryption services to function properly, complying with best practices for distributed key management.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 56
......

NCP-CI-AWS問題集でリアル試験問題でテストエンジン問題集でトレーニング:https://www.jpntest.com/shiken/NCP-CI-AWS-mondaishu

NCP-CI-AWSテスト問題集とオンライン試験エンジン:https://drive.google.com/open?id=1TpdExkKNbYeidC79UawklTShE39pD92o

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡