NCP-CN 無料問題集「Nutanix Certified Professional - Cloud Native v6.10」
A company uses an Artifactory private registry for development. The NKP deployment must use this private registry since the Security Administrator has the firewall configured to reject connections to public container registries. The first task is to push the NKP bundle to this private registry.
What options should be used to push the NKP bundle to this private registry?
What options should be used to push the NKP bundle to this private registry?
正解:C
解答を投票する
The Platform Engineer needs to expand an NKP Pro demo cluster due to workload capacity constraints. The demo cluster has 150 vCPUs available to it from a licensing standpoint. Each worker node has 8 vCPUs and each control plane node has 4 vCPUs.
Which two options are valid for expanding the demo cluster and remaining compliant with licensing? (Choose two.)
正解:A、B
解答を投票する
A Platform Engineer is deploying NKP into a highly secure vSphere environment. The NKP cluster will be air-gapped, and must also be FIPS compliant. The OS platform to be used for NKP cluster nodes is RHEL.
What must the engineer do to properly prep an OS image and have it be deployed as a FIPS compliant NKP cluster node?
What must the engineer do to properly prep an OS image and have it be deployed as a FIPS compliant NKP cluster node?
正解:B
解答を投票する
A company has different Kubernetes clusters for different business units. Every business unit has separate Kubernetes clusters for production and development because the software deployed in production is different than development. Now, all production clusters for all business units are standardized and all clusters for development are standardized as well.
The company recently acquired NKP Ultimate licenses for all Kubernetes clusters.
How can the company control the standard configuration for both environments in all clusters (production and development)?
The company recently acquired NKP Ultimate licenses for all Kubernetes clusters.
How can the company control the standard configuration for both environments in all clusters (production and development)?
正解:C
解答を投票する
A Platform Engineer has been tasked with building a custom image for the deployment of NKP management and worker nodes. The engineer needs to ensure that the proper package versions are used when creating these images. The security team has only authorized version 1.30.5 of Kubernetes and version 1.7.22 of containerd. Where should the engineer go to verify that this is the version being used when building the custom image?
正解:C
解答を投票する
An administrator has been trying to deploy an initial AHV-based NKP cluster in a dark site (no Internet connectivity) environment using the command shown in the question.
nkp create cluster nutanix \
--cluster-name=$CLUSTER_NAME \
--control-plane-prism-element-cluster=$PE_NAME \
--worker-prism-element-cluster=$PE_NAME \
--control-plane-subnets=$SUBNET_ASSOCIATED_WITH_PE \
--worker-subnets=$SUBNET_ASSOCIATED_WITH_PE \
--control-plane-endpoint-ip=$AVAILABLE_IP_FROM_SAME_SUBNET \
--csi-storage-container=$NAME_OF_YOUR_STORAGE_CONTAINER \
--endpoint=$PC_ENDPOINT_URL \
--control-plane-vm-image=$NAME_OF_OS_IMAGE_CREATED_BY_NKP_CLI \
--worker-vm-image=$NAME_OF_OS_IMAGE_CREATED_BY_NKP_CLI \
--registry-url=${REGISTRY_URL} \
--registry-mirror-username=${REGISTRY_USERNAME} \
--registry-mirror-password=${REGISTRY_PASSWORD} \
--kubernetes-service-load-balancer-ip-range $START_IP-$END_IP \
--self-managed
Which missing attribute needs to be added in order for the deployment?
nkp create cluster nutanix \
--cluster-name=$CLUSTER_NAME \
--control-plane-prism-element-cluster=$PE_NAME \
--worker-prism-element-cluster=$PE_NAME \
--control-plane-subnets=$SUBNET_ASSOCIATED_WITH_PE \
--worker-subnets=$SUBNET_ASSOCIATED_WITH_PE \
--control-plane-endpoint-ip=$AVAILABLE_IP_FROM_SAME_SUBNET \
--csi-storage-container=$NAME_OF_YOUR_STORAGE_CONTAINER \
--endpoint=$PC_ENDPOINT_URL \
--control-plane-vm-image=$NAME_OF_OS_IMAGE_CREATED_BY_NKP_CLI \
--worker-vm-image=$NAME_OF_OS_IMAGE_CREATED_BY_NKP_CLI \
--registry-url=${REGISTRY_URL} \
--registry-mirror-username=${REGISTRY_USERNAME} \
--registry-mirror-password=${REGISTRY_PASSWORD} \
--kubernetes-service-load-balancer-ip-range $START_IP-$END_IP \
--self-managed
Which missing attribute needs to be added in order for the deployment?
正解:A
解答を投票する
An administrator has been tasked with deploying NKP as the Kubernetes platform and needs to deploy their first cluster with the following requirements:
Dark site (no Internet connectivity)
Nutanix-provided Rocky Linux VM image
AHV-based clusterWhat are two prerequisites to accomplish the deployment? (Choose two)
Dark site (no Internet connectivity)
Nutanix-provided Rocky Linux VM image
AHV-based clusterWhat are two prerequisites to accomplish the deployment? (Choose two)
正解:A、B
解答を投票する
A Cloud Engineer is deploying an NKP cluster into an AWS environment. By default, when deploying NKP on AWS infrastructure, it generates the supporting infrastructure necessary for the cluster (VPC, subnets, ELBs). However, the AWS team has insisted that the NKP cluster be deployed on existing AWS infrastructure. How can the engineer meet this requirement?
正解:D
解答を投票する
A Platform Engineer is a member of an IT team that provides Kubernetes clusters for three groups within a company named Fin Group, Inc.:
Fin VD
Fin Insurance
Fin TravelThe engineer created workspaces for each group. Fin Group Inc. has its own Active Directory implementation, while each group uses their own Identity Provider. Now, the engineer needs to assign the Tenant Administrators role for each workspace. How will the engineer complete this task?
Fin VD
Fin Insurance
Fin TravelThe engineer created workspaces for each group. Fin Group Inc. has its own Active Directory implementation, while each group uses their own Identity Provider. Now, the engineer needs to assign the Tenant Administrators role for each workspace. How will the engineer complete this task?
正解:C
解答を投票する
A Platform Engineer is deploying a new NKP cluster that has internet connectivity. Now, a Cloud Administrator and Security Administrator are discussing the security of communications between the NKP Kubernetes cluster and the container registry. The engineer proposes to have an on-prem private registry.
What is the most significant reason that the engineer should create a private registry instead of configuring a secure connection between the NKP cluster and Github (SaaS)?
What is the most significant reason that the engineer should create a private registry instead of configuring a secure connection between the NKP cluster and Github (SaaS)?
正解:D
解答を投票する