Nutanix Certified Professional NCP-CI-AWS試験と認定テストエンジン [Q45-Q65]

Share

(PDF)Nutanix Certified Professional NCP-CI-AWS試験と認定テストエンジン

無料提供中のNCP-CI-AWS試験問題集で(2024年最新のPDF問題集)信頼度の高いNCP-CI-AWSテストエンジン

質問 # 45
Exhibit.

An administrator is attempting, but failing to create an NC2 cluster in AWS. The administrator checks the configuration in the NC and notices the configuration shown in the exhibit.
What action should the administrator take to resolve the issue?

  • A. Grant the administrator's account access to the NC2 organization.
  • B. Recreate the AWS CloudFormation stack.
  • C. Restart Genesis on a Prism Central instance.
  • D. Create a new cloud account in the organization.

正解:D

解説:
The exhibit shows two cloud accounts, one for Azure and one for AWS, with their statuses indicated. The AWS cloud account status is marked as "U" (which likely stands for "Unavailable" or "Unreachable"). This indicates that the AWS cloud account configuration is not properly connected or accessible.
Status Check:
The AWS cloud account is marked with an "U" status, meaning it is not active or accessible.
This status prevents the creation of an NC2 cluster because the necessary cloud resources cannot be allocated or managed without a proper connection.
Action:
The best course of action is to create a new cloud account in the organization. This involves setting up the cloud account details correctly and ensuring it is properly configured to communicate with Nutanix and AWS.
Steps to Create a New Cloud Account:
Log in to the Nutanix console.
Navigate to the "Organizations" section.
Select "Add Cloud Account" and provide the required AWS credentials and permissions.
Ensure the new cloud account is active and correctly configured.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Cloud Account Management


質問 # 46
To deploy NC2 in AWS using an existing VPC, which two AWS resources should be configured beforehand? (Choose two.)

  • A. NAT Gateway
  • B. Bare-metal EC2 Instance
  • C. Public and Private Subnets
  • D. Placement Group

正解:A

解説:
To deploy NC2 in AWS using an existing VPC, the following AWS resources should be configured beforehand:
NAT Gateway: This allows instances in the private subnet to connect to the internet or other AWS services, while preventing the internet from initiating connections with those instances.
Public and Private Subnets: These are necessary to segregate the network traffic. Public subnets provide a direct route to the internet gateway, while private subnets are used for internal resources that do not need direct access to the internet.
Reference:
Nutanix Cloud Clusters on AWS Deployment Guide
Nutanix Support & Insights


質問 # 47
When creating an NC2 cluster in AWS, what are the required permissions for the account used to run the CloudFormation script?

  • A. lAMUserSSHKeys, AWS_ConfigRole, AWSCIoudFormationFullAccess
  • B. lAMFullAccess, AmazonEC2FullAccess, AWSCIoudFormationFullAccess
  • C. IAMAccess, AmazonCloudDirectoryFullAccess, AWSCIoudFormationFullAccess
  • D. lAMAccess, AWS_ConfigRole, AWSCIoudFormationFullAccess

正解:B

解説:
When creating an NC2 cluster in AWS, the account used to run the CloudFormation script requires specific permissions to ensure the deployment is successful. The required permissions are:
IAMFullAccess: Provides full access to IAM resources.
AmazonEC2FullAccess: Allows full access to EC2 resources.
AWSCIoudFormationFullAccess: Grants full access to manage AWS CloudFormation stacks.
These permissions are necessary to create, manage, and deploy the required AWS resources for the NC2 cluster.
Reference:
Nutanix Support & Insights
AWS IAM Documentation


質問 # 48
A company has purchased Nutanix AOS Pro licensing.
Which add-on products are available with this license tier in the AWS cluster deployment wizard?

  • A. Files, Advanced Replication, and DARE
  • B. Nus
  • C. Self-Service and Cost Governance
  • D. EUC

正解:A

解説:
With the Nutanix AOS Pro licensing, several advanced features and add-on products become available. Specifically, in the AWS cluster deployment wizard, the following add-ons are available:
Files:
Nutanix Files provides a software-defined, scale-out file storage solution that simplifies the management and scaling of unstructured data.
Advanced Replication:
Advanced Replication features in Nutanix include synchronous and asynchronous replication capabilities, allowing for robust disaster recovery and data protection solutions.
DARE (Data-At-Rest Encryption):
DARE ensures that all data stored on Nutanix clusters is encrypted, providing a higher level of security for sensitive information.
These features are included in the AOS Pro licensing tier, offering enhanced data management, protection, and security capabilities.
Reference:
Nutanix Licensing Guide
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Advanced Features


質問 # 49
An administrator is creating and destroying multiple clusters daily for a test/dev environment. The administrator wants ensure that every NC2 on AWS cluster deployed will allow full access from the on-premises CVM subnet.
What is most-efficient way to achive this?

  • A. Create a Custom AWS Network Security Group using a key value of tag:nutanix:clusters:external and set the inbound allow address of the on-premises subnet.
  • B. Modify the UVM Network Security Group of each cluster by setting the outbound allow address of the on-premises subnet.
  • C. Modify the UVM Network Security Group of each cluster by setting the inbound allow address of the on-premises subnet.

正解:A

解説:
D/ Create a Custom AWS Network Security Group using a key of tag:nutanix: clusters:external:cluster-uuid and set the value of the UUID for each deployed cluster. Set the inbound allow address of the on-premises subnet.
Explanation:
To ensure that every NC2 on AWS cluster deployed allows full access from the on-premises CVM subnet efficiently, the administrator should create a custom AWS Network Security Group.
Use a key value of tag:nutanix:clusters:external for the security group, and set the inbound allow address to the on-premises subnet.
This approach leverages AWS tags to manage security group rules dynamically and ensures that the necessary access permissions are applied automatically to all clusters with the specified tag.
This method reduces the need for manual configuration of each cluster's security group, streamlining the process for a test/dev environment where clusters are frequently created and destroyed.
Reference:
Refer to the AWS documentation on Network Security Groups and Nutanix documentation on best practices for securing NC2 clusters.


質問 # 50
Administrator has recently deployed an NC2 cluster on AWS in the North Virginia region in availability zone us-east-id. The consuming IPS from a 10.78.2.0/24 range.
The AWS VPC has two available CIDR ranges:
10.78.0.0/16
10.19.101.0/24
The following subnet have been configured in the NC2 AWS VPC:

Which two subnet will show up in the Network configuration of the Prism Element Settings page? (Choose two.)

  • A. DR01
  • B. L2stretch
  • C. VDI
  • D. DR02

正解:A、B

解説:
For the NC2 cluster deployed in the North Virginia region (us-east-id), consuming IPs from the 10.78.2.0/24 range, the subnets configured within the same CIDR range of 10.78.0.0/16 will be recognized.
The subnet DR01 (10.78.2.0/24) is directly within the range of the deployed cluster.
The subnet L2stretch (10.19.101.0/24) is also configured in the NC2 AWS VPC, although not in the immediate range of the cluster, it may show up due to broader network configurations for stretched L2 operations.
Subnets VDI (10.78.130.0/22) and DR02 (10.79.120.0/24), although part of the same VPC, are not directly within the immediate CIDR range or may not be recognized in this specific configuration scenario.
Reference:
Refer to the Nutanix documentation on NC2 AWS VPC subnet configurations and Prism Element settings for detailed guidelines on network visibility and configuration.


質問 # 51
An administrator is seeking help with an ongoing NC2 issue. After reaching out to Nutanix support, the administrator is introduced to NC2 specialist who can help troubleshoot the problem.

  • A. Provide the specialist with the administrator's login credentials.
  • B. Add the specialist as an admin user to the organizations.
  • C. Ensure the specialist is assigned the RBAC role with proper permissions.
  • D. Confirm the Support Authorization on the organization is set to Full Access.

正解:C、D

解説:
Ensure the specialist is assigned the RBAC role with proper permissions (Answer A):
Role-Based Access Control (RBAC) ensures that the specialist has the necessary permissions to troubleshoot and manage the NC2 environment. This avoids unnecessary privilege escalations and maintains security.
Confirm the Support Authorization on the organization is set to Full Access (Answer C):
Setting the Support Authorization to Full Access allows the Nutanix support specialist to have the required access to investigate and resolve issues in the environment. This is essential for effective troubleshooting.
Reference:
Nutanix RBAC Documentation
Nutanix Support Access Guide


質問 # 52
In which two ways should an NC2 on AWS cluster be hibernated manually? (Choose two.)

  • A. Select the cluster under NC2 console and Select Hibernate/Resume on the cluster sur page.
  • B. Log into NC2 console, find the cluster name and select Hibernate/Resume from the ellipses.
  • C. Log into Prism Element navigate to Settings and select Hibernate/Resume.
  • D. Log into Prism, Central, navigate to Planning, find hibernate and resume.

正解:A、B

解説:
To manually hibernate an NC2 on AWS cluster, the administrator can use the following methods:
Select the cluster under NC2 console and Select Hibernate/Resume on the cluster sur page: Navigate to the specific cluster in the NC2 console and use the provided Hibernate/Resume option.
Log into NC2 console, find the cluster name and select Hibernate/Resume from the ellipses: Access the NC2 console, locate the cluster name, and select the Hibernate/Resume option from the ellipses (three dots) menu.
These options allow for the manual control of the cluster's hibernation state directly within the NC2 console interface.
Reference:
Nutanix Cloud Clusters on AWS Administration
Nutanix Support & Insights


質問 # 53
An administrator is deploying a new NC2 cluster on AWS and needs to ensure full connectivity is established between the company's on-premises datacenter and the AWS cloud.
Which two AWS offering will satisfy this requirement? (Choose two.)

  • A. ExpressRoute
  • B. Direct Connect
  • C. AWS VPN
  • D. Dedicated interconnect

正解:B、C

解説:
To establish full connectivity between the company's on-premises datacenter and the AWS cloud, the following AWS offerings will satisfy this requirement:
AWS VPN: This service allows you to create a secure connection between your on-premises network or other remote network and your AWS VPC using an IPsec VPN tunnel. It is suitable for low to moderate bandwidth requirements and provides secure, encrypted connections.
Direct Connect: AWS Direct Connect is a dedicated network connection from your premises to AWS. It provides a private, high-bandwidth, low-latency connection which is ideal for high-throughput applications and workloads that need consistent network performance.
Reference:
AWS VPN Documentation
AWS Direct Connect Documentation


質問 # 54
What is an available log module when configuring a syslog server in the Prism Central Admin Center?

  • A. Zookeeper
  • B. Prism
  • C. Acropolis
  • D. API Audit

正解:C

解説:
When configuring a syslog server in the Prism Central Admin Center for Nutanix, one of the available log modules is Acropolis.
The Acropolis module logs system events related to the Nutanix Acropolis operating system, which is critical for monitoring and auditing system activities and performance.
Configuring syslog with the Acropolis module ensures that important events and issues related to the Acropolis environment are captured and can be forwarded to an external syslog server for centralized logging and analysis.
Reference:
Refer to the Nutanix documentation on Prism Central and syslog configuration for the full list of available log modules and detailed steps for configuration.


質問 # 55
An administrator is deploying an NC2 cluster on AWS in the us-west-2 region. A VPC, management subnet, and a VM subnet are already created in the target region.
The management subnet has a local route and a route to the internet. The subnet has a route and a route to the NAT gateway. During the deployment, the management subnet appears in the drop-down list in the Create Cluster wizard, but cannot be selected.
What is the cause of this problem?

  • A. The subnet has an IPv4 CIDR block but does not have an IPv6 CIDR block.
  • B. The subnet does not have route to a Site-to-Site VPN connection through a virtual private gateway.
  • C. The subnet has a direct route to an Internet gateway.
  • D. The subnet has both an IPv4 CIDR block and an IPv6 CIDR block.

正解:D

解説:
The Nutanix Create Cluster wizard may not support selecting subnets that have both IPv4 and IPv6 CIDR blocks due to compatibility or configuration constraints.
When a subnet with both CIDR blocks is present, it can cause issues in the selection process during cluster creation, as the system might not be able to properly handle or recognize the dual-stack configuration.
Ensuring that the management subnet has only an IPv4 CIDR block, without an IPv6 CIDR block, could resolve this issue and allow for successful selection in the cluster creation wizard.
Reference:
Refer to the Nutanix and AWS documentation on subnet configuration and requirements for NC2 cluster deployments, specifically addressing IPv4 and IPv6 compatibility and constraints.


質問 # 56
An administrator needs to create user VM subnets for multiple NC2 clusters in AWS.
What would be the best approach to take?

  • A. Create guest-VM subnets for each cluster.
  • B. Create guest-VM subnets to be shared by all clusters.
  • C. Create guest-VM VNets for each cluster.
  • D. Use the cluster management subnet dedicated to each cluster.

正解:A

解説:
When creating user VM subnets for multiple NC2 clusters in AWS, the best approach is to create guest-VM subnets for each cluster. This ensures that each cluster has its own dedicated subnets, which simplifies network management and avoids potential IP conflicts.
Advantages of Dedicated Subnets:
Isolation: Each cluster operates in its own subnet, providing better isolation and security.
Management: Easier to manage and troubleshoot network issues when each cluster has its own subnets.
Scalability: More scalable as each subnet can be managed and expanded independently.
Steps to Create Guest-VM Subnets:
Identify the IP range for each subnet.
In the AWS VPC console, create a new subnet for each cluster using the identified IP ranges.
Associate the new subnets with the respective clusters during or after the cluster deployment process.
Why Not Shared Subnets:
Shared subnets could lead to IP conflicts and make network management more complex, especially as the number of clusters grows.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS VPC Subnet Creation Documentation


質問 # 57
Which address must AWS Directory Service be able to resolve when deploying a new NC2 cluster?

  • A. gateway-external-api. cloud, nutanix.com
  • B. gateway-internal-api.cloud.nutanix.com
  • C. apikeys.nutanix.com
  • D. dovvnloads.cloud.nutanix.com

正解:A

解説:
When deploying a new NC2 cluster, the AWS Directory Service must be able to resolve the address gateway-external-api.cloud.nutanix.com.
This external API gateway is critical for the NC2 cluster to communicate with Nutanix services for operations such as management, updates, and licensing.
Ensuring that this address can be resolved allows the cluster to interact properly with the Nutanix cloud infrastructure and services.
Reference:
Refer to the Nutanix documentation on network and DNS requirements for NC2 deployments, specifically the addresses that need to be resolvable for proper functionality.


質問 # 58
A company has a large scale AWS deployment and has just finished installing their first NC2 on AWS cluster. The new cluster is now running workloads in production.
The cluster is configured with:
* 16 Nodes
* 8 Subnets
* 200 User VMs per subnet
* Nutanix Files
An administrator has been tasked with installing an EC2 instance on one of the subnets that is also used by the Nutanix, When the EC2 instance is powered on, an IP conflict occurs.
What action should the administrator take to resolve this issue?

  • A. The IP address used by the EC2 instance should be blocked / excluded from IPAM.
  • B. The Instance Metadata of the NC2 instance needs to have the address reserved.
  • C. The IP address used by the NC2 VM should be blocked /excluded from EC2.
  • D. Assign an elastic IP to the EC2 instance and reboot.

正解:C

解説:
To resolve the IP conflict issue when an EC2 instance is powered on in a subnet also used by Nutanix NC2, the administrator should block or exclude the IP address used by the NC2 VM from being assigned to EC2 instances. This can be done by configuring the IP address management (IPAM) settings to ensure that the specific IP addresses allocated to the NC2 VMs are not used by EC2 instances, preventing IP conflicts and ensuring smooth operation of both environments.
Reference:
Nutanix Cloud Clusters on AWS Deployment Guide
Nutanix Support & Insights


質問 # 59
An administrator is planning a new NC2 on AWS deployment. The workload VMs to be deployed on the new cluster have low storage and memory, but high CPU frequency (>3.0 GHz) requirements.
The administrate! has also been tasked with ensuring that the cluster nodes have the lowest number of CPU cores to reduce application licensing requirements.
Which node type will satisfy this new deployment?

  • A. i4i.metal
  • B. i3.metal
  • C. m5d.metal
  • D. zld.metal

正解:B

解説:
For a new NC2 on AWS deployment where workload VMs have low storage and memory requirements but high CPU frequency (>3.0 GHz) requirements, and the goal is to minimize the number of CPU cores to reduce application licensing costs, the i3.metal instance type is the most suitable.
i3.metal:
High CPU Frequency: i3.metal instances offer high-frequency Intel Xeon processors (up to 3.1 GHz) which meet the high CPU frequency requirement.
Low Storage and Memory: These instances come with a balanced amount of storage and memory, suitable for workloads with low requirements in these areas.
Minimized CPU Cores: i3.metal instances have fewer CPU cores compared to other high-frequency instances like i4i.metal, making them ideal for minimizing application licensing costs.
Other Instance Types:
z1d.metal: While also offering high CPU frequency, these instances typically come with a higher core count and more memory, which may not be optimal for minimizing licensing costs.
i4i.metal: Designed for I/O intensive applications with higher core counts.
m5d.metal: Balanced instance type but with more cores and not as high CPU frequency as required.
Reference:
AWS EC2 Instance Types Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for Instance Selection


質問 # 60
An administrator is attempting to deploy an NC2 cluster.
The cluster configuration is as follows:
* Name - Cluster-1
* Nodes of type i4i.metal
* Replication Factor 2
* Existing VPC resources
* VPC - 10.0.0.0/16
* Subnets:
* Bare metal hosts: 10.0.1.0/24
* User VMs:10.0.2.0/24
* Public: 10.0.3.0/24
During the deployment process, the administrator notices the following alert:

What should the administrator do to ensure the cluster deployment does not fail?

  • A. Check AWS VPC and subnet quotas for the cloud account.
  • B. Ensure an outbound Internet connection exists from 10.0.1.0/24.
  • C. Create a new VPC and modify the cluster configuration to use the new VPC.
  • D. Modify the administrator's RBAC permissions in the NC2 console.

正解:B

解説:
The alert indicates a potential issue with the VPC/Subnet settings, preventing the cluster nodes from contacting Nutanix services.
To resolve this, the administrator needs to ensure that the subnet 10.0.1.0/24, which is assigned for Bare metal hosts, has an outbound Internet connection.
This connection is necessary for the cluster nodes to communicate with external Nutanix services for updates, license validation, and other essential operations.
Verify that there are appropriate route tables and security group rules allowing outbound traffic to the Internet from the 10.0.1.0/24 subnet.
Ensure that there is either an Internet Gateway (IGW) attached to the VPC or a NAT Gateway configured if using private subnets.
Reference:
Refer to the Nutanix documentation and AWS VPC configuration guides to ensure proper Internet connectivity and routing setups.


質問 # 61
An administrator has created an NC2 cluster on AWS, but the NC2 console has issued this alert:

Which two scenarios could have resulted in the cluster creation failure? (Choose two.)

  • A. Insufficient permissions
  • B. Bad Terraform (TF) state in provisioning
  • C. AWS Quota exceeded/instance limit exceeded
  • D. No available AWS credits

正解:A、C

解説:
The error message in the image indicates that the cluster creation failed due to reaching the maximum retries for provisioning cluster nodes. Here are two possible scenarios that could lead to this issue:
Insufficient Permissions (Answer B):
If the AWS user or role used to create the cluster does not have sufficient permissions, it can result in failures during the provisioning process. Proper IAM policies must be attached to ensure that the necessary actions can be performed, such as launching instances, creating VPCs, or managing networking components.
AWS Quota Exceeded/Instance Limit Exceeded (Answer D):
AWS imposes quotas and limits on the number of instances and other resources that can be created within an account. If these quotas are exceeded, new instances cannot be provisioned, causing the cluster creation to fail. This can be resolved by requesting a quota increase from AWS.
Reference:
Nutanix Knowledge Base Article 9774
AWS Service Quotas
Nutanix NC2 on AWS Documentation


質問 # 62
The cluster is configured as follows:
* 8 nodes
* Prism Central Deployed
* Files Deployed
Following the deployment, the administrator experiences network connectivity issues.
Which reason explains the connectivity issues?

  • A. The 192.168.5.0/24 range is not a valid CIDR range.
  • B. The 192.168.5.0/24 range does not have enough IP addresses available.
  • C. The 192.168.5.0/24 range is reserved for internal cluster usage.
  • D. The 192.168.5.0/24 range is reserved by IANA,

正解:C

解説:
The 192.168.5.0/24 range is often reserved for internal cluster communication within Nutanix deployments.
Using this CIDR range for other purposes could lead to network conflicts and connectivity issues, as it might interfere with the internal operations and communication channels of the Nutanix cluster.
Ensuring that the CIDR range is not overlapping with any reserved ranges is crucial for maintaining proper network connectivity and cluster functionality.
Reference:
Refer to the Nutanix documentation on network configuration and best practices for NC2 deployments to confirm reserved IP ranges and their appropriate use.


質問 # 63
Exhibit.

What action is taken against the Condemned node shown in the exhibit?

  • A. The node has a power reset sent to it.
  • B. The node is restarted.
  • C. The node Is automatically replaced.
  • D. The node is powered off.

正解:A

解説:
When a node is marked as "Condemned," it indicates that the system has determined that the node is no longer reliable for operations. As part of the automated recovery and protection process, the following action is typically taken:
The node has a power reset sent to it (Answer A):
In most cases, a condemned node undergoes a power reset as an initial recovery attempt. This action attempts to reboot the node to bring it back to a healthy state. If the reset fails, further manual or automated steps may be required to address the hardware or software issue.
Reference:
Nutanix Cluster Management Documentation
Nutanix Support Knowledge Base


質問 # 64
An administrator has deployed NC2 on AWS. The cluster deployment completed successfully.
After deployment, the administrator created a subnet in AWS, added it as a network in Prism Element, deployed Prism Central using the newly-configured network, and registered the cloud cluster with it.
The on-premises network and AWS are connected via a Site-to-Site VPN. Cluster nodes, CVM, and Prism Central can communicate with each other, but cannot be accessed from the on-premises network.
What two issues might be the cause of this problem? (Choose two.)

  • A. Traffic from the on-premises network is not permitted by VM and Management security groups.
  • B. AWS Direct Connect must be used to establish connection between AWS and on-premises
  • C. The AHV firewall is blocking traffic from the on-premises network.
  • D. The AWS VPC traffic is blocked by a firewall in the on-premises network.

正解:A、D

解説:
Traffic from the on-premises network is not permitted by VM and Management security groups:
Ensure that the security groups assigned to the VMs and management interfaces in AWS allow inbound traffic from the on-premises network. Without appropriate security group rules, the traffic will be blocked.
The AWS VPC traffic is blocked by a firewall in the on-premises network:
Check if the firewall on the on-premises network is configured to allow traffic from the AWS VPC. Firewalls may have restrictive rules that block incoming traffic, preventing communication.
Reference:
Refer to AWS documentation on security groups and firewalls and Nutanix documentation on configuring networking for NC2 clusters.


質問 # 65
......


Nutanix NCP-CI-AWS 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • AWS 環境での NC2 の管理: この試験コンポーネントでは、ノードとクラスターの管理タスクに関する理解と、クラスターとクラウド リソースの健全性を監視する能力がテストされます。
トピック 2
  • AWS クラウド環境の準備: この試験セグメントでは、AWS クラウド環境をセットアップし、NC2 サービス サブスクリプションを開始し、実装基準を確立し、ネットワークの前提条件を認識する能力を評価します。
トピック 3
  • AWS 環境での NC2 の構成: このセクションでは、クラウド ネットワークとセキュリティ対策の設定、および接続の問題への対処に関する熟練度を検査します。
トピック 4
  • AWS 環境での NC2 の導入: この部分では、クラウド クラスターの導入、クラウド プロバイダーのネットワーク構成に関する知識と、クラスター導入の課題に対処するスキルを評価します。

 

NCP-CI-AWS完全版問題集には無料PDF問題で合格させる:https://www.jpntest.com/shiken/NCP-CI-AWS-mondaishu

NCP-CI-AWSPDFで最近更新された問題です集試験点数を伸ばそう:https://drive.google.com/open?id=1TpdExkKNbYeidC79UawklTShE39pD92o

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡