Download Professional VMware Security 2V0-81.20 Free Dumps Questions

test2022-01-26T08:03:50+00:00

By test 2V0-81.20 Free Dumps, Professional VMware Security, VCP-SEC 2022 0 Comments

Get update Professional VMware Security 2V0-81.20 Exam Questions For VCP-SEC 2022 Certification. It is a 70-item exam, with a passing score of 300 using a scaled scoring method. Candidates are given 130 minutes to complete the exam. If you are preparing for VMware 2V0-81.20 exam, you should get rofessional VMware Security 2V0-81.20 Free Dumps Questions to pass in the first try.

To help you prepare for the exam, take a free 2V0-81.20 practice test.

Page 1 of 2

1. In an NSX-T Data Center deployment, micro-segmentation via security policies is accomplished using which component?

NSX Bridge Firewall

NSX Gateway Firewall

NSX Logical Router

NSX Distributed Firewall

2. Which Carbon Black Cloud feature allows an administrator to audit at scale and identify gaps in least privilege configuration controls?

Watchlist

Live Query

Investigate

CB Baseline Tool

3. Considering the NSX Manager Node, what is VMware's recommended size for a typical production deployment?

small appliance for deployments with up to 64 hosts

medium appliance for deployments with up to 64 hosts

medium appliance for deployments with up to 128 hosts

small appliance for deployments with up to 32 hosts

4. When creating a firewall rule in NSX-T Data Center, what are the three valid options in the action column? (Choose three.)

Drop

Log

Allow

Isolate

Reject

5. An administrator is trying to secure Workspace ONE components with firewall rules.

What port and protocol does the administrator need to allow for Secure LDAP to Active Directory?

389/TCP

3389/TCP

636/TCP

1433/TCP

6. A consulting security firm was hired to inspect your infrastructure for vulnerabilities.

The firm inspected these items:

badge readers to enter the datacenter

locks on server racks

security cameras in the datacenter

What type of infrastructure are they inspecting?

Virtual Infrastructure

Physical Infrastructure

Personnel Infrastructure

Logical Infrastructure

7. Which two options are available for Windows Update Source when creating a Windows Profile for patch management in a Workspace ONE deployment? (Choose two.)

VMware Update Manager

Microsoft Update Service

VMware Update Service

Cloud Update Service

WSUS

8. Which of the following statements is true about Monitor Port Mirroring Sessions in NSX-T Data Center?

This feature requires a SPAN compliant appliance.

A source mirror port can be in more than one mirror session.

A source mirror port cannot be in more than one mirror session.

This feature requires an IPFIX compliant collector.

9. When creating a compliance policy in Workspace ONE UEM, which three of the following options are valid Notify actions? (Choose three.)

Send SMS to Device

Send Push Notification to Device

Voice Call to User

Send Email to User

SMS to Manager

10. Which are two use cases for NSX Intelligence? (Choose two.)

Perform day 2 network operations and troubleshooting.

Provide end-to-end network visibility for physical, virtual, and third-party environments.

Identify security vulnerabilities and automatically quarantine affected workloads.

Gain insight about micro-segmentation traffic flows.

Simplify rule recommendation and deployment.

Page 2 of 2

11. A security administrator receives an error with code 1001 while configuring a time-based firewall rule on an ESXi host.

Which two actions can resolve the problem? (Choose two.)

restarting the NSX firewall kernel module on the ESXi host

restarting the NTP service on the ESXi host

configuring the ESXi host with a remote NTP server

configuring the ESXi host with a local NTP server

reinstalling the NSX modules on the ESXi host

12. In the NSX Manager UI, which tab is selected to manage firewall rules?

Plan & Troubleshoot tab

Security tab

Inventory tab

Networking tab

13. When creating an NSX-T Data Center Firewall rule to prevent all communication between same scope objects, what must be true of the first firewall rule?

The port will be 443.

The logging would be on.

The source and destination are the same.

The firewall action would be rejected.

14. An administrator has added a new ESXi host to a vCenter Server Cluster with NSX-T Data Center already working. The administrator installed NSX-T Data Center components in the new ESXi. When the administrator deploys a new VM in the host, connectivity tests good with ping, but SSH session traffic is erratic. The VDS and NSX-T Data Center configuration is the same as each ESXI in the Cluster, but only VMs in the new ESXI are having problems.

What should the administrator do to address the problem?

Verify VLAN connection in each physical uplink.

Verify MTU configuration in each physical uplink.

Change VDS MTU to 1500 in each physical uplink.

Change VDS MTU to 2000 in each physical uplink.

15. What is the number of NSX managers that can be deployed in a NSX-T Data Center production environment?

a single NSX Manager and three NSX Controllers

a NSX Management Cluster of three Managers and a NSX Controllers Cluster of three Controllers

a single NSX Management Cluster of three Managers which includes the NSX Controller function

a single NSX Manager and a single NSX Controller

16. Which file can be used to validate repcli authentication was enabled for Carbon Black Cloud?

C:Program FilesConferrepcii.ini

C:Program FilesConferconfig.ini

C:Program FilesConfercfg.ini

C:Program FilesConfercli.ini

17. What command does an administrator use on an ESXi Transport Node to check connectivity with the management plane?

esxcli network ip connection list 1234

esxcli firewall ip connection list | grep 1234

esxcli ip connection 1234

esxcli network ip connection list | grep 1234

18. An administrator has been asked to install Guest Introspection Thin Agent using VMware

Tools on a Windows 10 VDI solution.

Which statement is correct for enabling the Identity Firewall feature?

Guest Introspection drivers are included with VMware Tools for Windows and a reboot of the VM is required to initialize the drivers

To install Guest Introspection on a Windows VM, you must perform a custom install and select the drivers.

Guest Introspection drivers are available from third-party providers and can be initialized without a VM reboot.

Select Guest Introspection Drivers to install File Introspection (vsepfit) and Network Introspection (vnetfit) drivers.