100%無料NCP-CI-AWS試験問題集で試験を簡単に合格させます [Q16-Q31]

Share

100%無料NCP-CI-AWS試験問題集で試験を簡単に合格させるFast2test

無料NCP-CI-AWS試験問題NCP-CI-AWS実際のリアル試験問題


Nutanix NCP-CI-AWS 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Deploying an NC2 on AWS Environment: This portion assesses your knowledge of cloud cluster deployment, cloud provider network configuration, and your skills in addressing cluster deployment challenges.
トピック 2
  • Prepare the AWS cloud environment: This exam segment evaluates your ability to set up the AWS cloud environment, initiate NC2 service subscription, establish implementation criteria, and recognize networking prerequisites.
トピック 3
  • Managing an NC2 on AWS Environment: This exam component tests your understanding of node and cluster management tasks, along with your ability to oversee cluster and cloud resource health.
トピック 4
  • Configuring an NC2 on AWS Environment: This section examines your proficiency in setting up cloud networking and security measures, as well as addressing connectivity issues.

 

質問 # 16
A company has a large scale AWS deployment and has just finished installing their first NC2 on AWS cluster. The new cluster is now running workloads in production.
The cluster is configured with:
* 16 Nodes
* 8 Subnets
* 200 User VMs per subnet
* Nutanix Files
An administrator has been tasked with installing an EC2 instance on one of the subnets that is also used by the Nutanix, When the EC2 instance is powered on, an IP conflict occurs.
What action should the administrator take to resolve this issue?

  • A. The Instance Metadata of the NC2 instance needs to have the address reserved.
  • B. The IP address used by the EC2 instance should be blocked / excluded from IPAM.
  • C. The IP address used by the NC2 VM should be blocked /excluded from EC2.
  • D. Assign an elastic IP to the EC2 instance and reboot.

正解:C

解説:
To resolve the IP conflict issue when an EC2 instance is powered on in a subnet also used by Nutanix NC2, the administrator should block or exclude the IP address used by the NC2 VM from being assigned to EC2 instances. This can be done by configuring the IP address management (IPAM) settings to ensure that the specific IP addresses allocated to the NC2 VMs are not used by EC2 instances, preventing IP conflicts and ensuring smooth operation of both environments.
Reference:
Nutanix Cloud Clusters on AWS Deployment Guide
Nutanix Support & Insights


質問 # 17
The cluster is configured as follows:
* 8 nodes
* Prism Central Deployed
* Files Deployed
Following the deployment, the administrator experiences network connectivity issues.
Which reason explains the connectivity issues?

  • A. The 192.168.5.0/24 range is reserved by IANA,
  • B. The 192.168.5.0/24 range is reserved for internal cluster usage.
  • C. The 192.168.5.0/24 range does not have enough IP addresses available.
  • D. The 192.168.5.0/24 range is not a valid CIDR range.

正解:B

解説:
The 192.168.5.0/24 range is often reserved for internal cluster communication within Nutanix deployments.
Using this CIDR range for other purposes could lead to network conflicts and connectivity issues, as it might interfere with the internal operations and communication channels of the Nutanix cluster.
Ensuring that the CIDR range is not overlapping with any reserved ranges is crucial for maintaining proper network connectivity and cluster functionality.
Reference:
Refer to the Nutanix documentation on network configuration and best practices for NC2 deployments to confirm reserved IP ranges and their appropriate use.


質問 # 18
An administrator has deployed an NC2 cluster in AWS.
The following configuration decisions were made:
Created a new VPC from the NC2 console as part of the deployment
Selected the Public option for prism access policy
Host type selected was i13en,metal
The administrator now has a goal of provision public internet access to a user VM (UVM),web-1, on the Nutanix cluster. The admin can access Prism Element via the public DNS of the Auto-created load balancer.
The administrator tries to create another network load balancer for the web server access. After creating the load balancer and registering web-1's IP address as a target, the administrator finds that the health check for the VM target is failing and the DNS returns as NOT Found message in the browser.
Why is the issue happening?

  • A. The load balancer is still in a Provisioning state.
  • B. The administrator has not modified the inbound rules under the UVM security group to a/low the network load balancer to access the UVM subnet.
  • C. The administrator needs to provision an application load balancer instead of a network load balancer to allow Internet traffic to access the UVM subnet.
  • D. The administrator has not assigned a public IP to web-1.

正解:D

解説:
For a VM to be accessible over the internet through a load balancer, the VM itself must have a public IP address.
In this case, the health check for the VM target is failing and the DNS returns a "NOT Found" message because web-1 does not have a public IP assigned.
Without a public IP, the load balancer cannot route traffic to web-1 from the internet.
Assigning a public IP to web-1 ensures that the VM can be accessed via the load balancer, resolving the connectivity issue.
Reference:
Refer to the AWS documentation on network load balancers and public IP assignments, and Nutanix documentation on VM network configurations.


質問 # 19
An administrator is tasked with adding an AWS account to the NC2 console. A requirement is to configure an AWS IAM user with the appropriate permissions.
Which permission must be assigned to the user?

  • A. AmazonEC2FullAccess
  • B. lAMReadOnlyAccess
  • C. lAMFullAccess
  • D. AmazonEC2ReadOnlyAccess

正解:A

解説:
To add an AWS account to the NC2 console, an AWS IAM user needs to be configured with the appropriate permissions to manage the EC2 resources. The required permission for the IAM user includes full access to manage EC2 instances, volumes, and related resources.
AmazonEC2FullAccess:
This permission grants full access to all EC2 resources, including the ability to create, modify, and delete instances, volumes, security groups, and more.
Essential for NC2 operations to manage the lifecycle of EC2 instances and associated components within the AWS environment.
Why Not Other Permissions:
IAMFullAccess: Grants full access to IAM resources but not specifically needed for EC2 operations.
IAMReadOnlyAccess: Only provides read access to IAM resources, insufficient for managing EC2 instances.
AmazonEC2ReadOnlyAccess: Provides read-only access to EC2 resources, insufficient for creating or modifying instances and other resources.
Reference:
AWS IAM Policies Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for IAM User Permissions


質問 # 20
An administrator has deployed an NC2 cluster on AWS to an existing environment for VDI.
Afterwards, the corporate security teams direct the administrator to reuse an existing AWS subnet, 10.79.4.0/24 that has two EC2 instances: EC2-1 (10.79.4.200) and EC2-2 (10.79.4.201). The security team indicates that this directive is to avoid overlap with the AHV IPAM.
Which two configuration actions should the administrator take to ensure there are no configuration issues? (Choose two.)

  • A. aCLI > net.de/ete_from_ip_blacklist 10.79.4.200 aCLI > net.defete_fromjp_blacklist 10.79.4.201
  • B. Deploy two VMs on the NC2 cluster and assign 10.79.4.200 and 10.79.4.201 as the assigned IPs in Prism Element
  • C. Configure the AHV JPAM to use DHCP range 10.79.4.2 -10.79.4.253.
  • D. aCLI > net.add_to_ip_bfacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201

正解:C、D

解説:
To avoid IP address conflicts and ensure there are no configuration issues when reusing an existing AWS subnet, the administrator should take the following actions:
aCLI > net.add_to_ip_blacklist 10.79.4.200 aCLI > net.add_to_ip_blacklist 10.79.4.201 (Answer A):
This command adds the specified IP addresses to the blacklist, preventing AHV IPAM from assigning these addresses to any VMs. This ensures that the existing EC2 instances with IPs 10.79.4.200 and 10.79.4.201 are not allocated to other VMs in the NC2 cluster.
Configure the AHV IPAM to use DHCP range 10.79.4.2 -10.79.4.253 (Answer D):
By configuring the AHV IPAM to use a specific DHCP range, you ensure that the IP addresses assigned to the EC2 instances (10.79.4.200 and 10.79.4.201) are not included in the DHCP pool. This prevents IP address conflicts within the subnet.
Reference:
Nutanix aCLI Reference
Nutanix NC2 on AWS Documentation
AWS VPC and Subnet Basics


質問 # 21
Which two statements are the most accurate regarding Cluster Protect? (Choose two.)

  • A. The dusters that are to be protected must be registered with the same instance of Prism Central.
  • B. Nutanix Guest Tools (NGT) is not required to be installed on User VMs.
  • C. An AWS subnet can be shared by VMs, Prism Central, and Multicloud Snapshort Technology (MST).
  • D. The Cluster Protect feature requires AOS version 6.7 or higher.

正解:A、D

解説:
The clusters that are to be protected must be registered with the same instance of Prism Central (Answer C):
For Cluster Protect to function correctly, all clusters intended for protection must be registered under the same Prism Central instance. This ensures consistent management and coordination of protection policies and operations across clusters.
The Cluster Protect feature requires AOS version 6.7 or higher (Answer D):
Cluster Protect is a feature that is available starting from AOS version 6.7. To utilize this feature, ensure that the Nutanix clusters are running this version or a newer one.
Reference:
Nutanix Cluster Protection Documentation
Nutanix AOS Release Notes


質問 # 22
An administrator is deploying a new cluster on AWS and would like to ensure the data is encrypted. Due to cost constraints, the deployment will leverage the native local key manager (LKM).
What is the minimal number of nodes needed to support the Nutanix native LKM?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:D

解説:
To support Nutanix's native Local Key Manager (LKM) for data encryption in a cost-effective manner, a minimum of three nodes is required. This ensures that there is enough redundancy and reliability for the encryption services to function properly, complying with best practices for distributed key management.
Reference:
Nutanix Support & Insights
Nutanix Cloud Clusters on AWS Administration


質問 # 23
An administrator needs to create user VM subnets for multiple NC2 clusters in AWS.
What would be the best approach to take?

  • A. Create guest-VM subnets to be shared by all clusters.
  • B. Use the cluster management subnet dedicated to each cluster.
  • C. Create guest-VM subnets for each cluster.
  • D. Create guest-VM VNets for each cluster.

正解:C

解説:
When creating user VM subnets for multiple NC2 clusters in AWS, the best approach is to create guest-VM subnets for each cluster. This ensures that each cluster has its own dedicated subnets, which simplifies network management and avoids potential IP conflicts.
Advantages of Dedicated Subnets:
Isolation: Each cluster operates in its own subnet, providing better isolation and security.
Management: Easier to manage and troubleshoot network issues when each cluster has its own subnets.
Scalability: More scalable as each subnet can be managed and expanded independently.
Steps to Create Guest-VM Subnets:
Identify the IP range for each subnet.
In the AWS VPC console, create a new subnet for each cluster using the identified IP ranges.
Associate the new subnets with the respective clusters during or after the cluster deployment process.
Why Not Shared Subnets:
Shared subnets could lead to IP conflicts and make network management more complex, especially as the number of clusters grows.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS VPC Subnet Creation Documentation


質問 # 24
Which entity should be contacted for AOS software supported related to NC2?

  • A. Partner
  • B. Public Cloud Vendor
  • C. Nutanix
  • D. Internal IT Operations team

正解:C

解説:
For AOS software support related to NC2, the appropriate entity to contact is Nutanix. Nutanix provides comprehensive support for their software, including the Acropolis Operating System (AOS) used in NC2 deployments.
Support Scope:
Nutanix offers support for the deployment, configuration, and management of NC2 clusters, including any issues related to AOS software.
This includes troubleshooting, updates, and technical assistance.
Why Not Other Options:
Internal IT Operations team: Typically handles internal issues but does not have the specialized knowledge or resources for AOS software support.
Partner: May provide support but would ultimately escalate issues to Nutanix for software-specific concerns.
Public Cloud Vendor: Manages infrastructure-related issues but does not provide support for Nutanix AOS software.
Reference:
Nutanix Support Documentation
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix Best Practices for AOS Support


質問 # 25
Which two options are prerequisites for deploying an NC2 on AWS cluster? (Choose two.)

  • A. An on-premises Prism Central environment
  • B. A my.nutanix.com account
  • C. A valid CIDR range
  • D. AWS Direct Connect

正解:B、C

解説:
A valid CIDR range: A CIDR (Classless Inter-Domain Routing) range is necessary for creating the subnets within the VPC. This range defines the IP address space for the cluster and its components.
A my.nutanix.com account: This account is required to access Nutanix services, including the NC2 console, manage licenses, and perform other administrative tasks.
AWS Direct Connect and an on-premises Prism Central environment are not prerequisites for deploying an NC2 on AWS cluster. While Direct Connect can be used for enhanced network performance and connectivity, it is not a requirement for deployment. Similarly, having an on-premises Prism Central environment is not mandatory for NC2 deployment on AWS.
Reference:
Refer to the Nutanix documentation on NC2 prerequisites and setup guides, and AWS documentation on VPC and subnet creation.


質問 # 26
Which interface must be used to deploy NC2?

  • A. Foundation running in a Cloud Virtual Machine
  • B. Prism Central Dashboard
  • C. Cloud Provider portal
  • D. NC2 Tile within the my.nutanix.com portal

正解:D

解説:
The NC2 Tile within the my.nutanix.com portal is the correct interface to deploy NC2. This portal provides an integrated and user-friendly interface specifically designed for deploying and managing Nutanix Clusters on AWS.
NC2 Deployment Interface:
NC2 Tile within the my.nutanix.com portal: This portal provides the necessary tools and options to deploy and manage NC2 clusters. It includes functionalities for setting up the clusters, configuring network settings, and managing resources.
Advantages:
User-Friendly Interface: Simplifies the deployment process with a guided setup.
Integrated Tools: Provides access to all necessary tools for managing the deployment and monitoring of NC2 clusters.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
Nutanix my.nutanix.com Portal Documentation
Nutanix Best Practices for Cluster Deployment


質問 # 27
An administrator is seeking help with an ongoing NC2 issue. After reaching out to Nutanix support, the administrator is introduced to NC2 specialist who can help troubleshoot the problem.

  • A. Ensure the specialist is assigned the RBAC role with proper permissions.
  • B. Provide the specialist with the administrator's login credentials.
  • C. Confirm the Support Authorization on the organization is set to Full Access.
  • D. Add the specialist as an admin user to the organizations.

正解:A、C

解説:
Ensure the specialist is assigned the RBAC role with proper permissions (Answer A):
Role-Based Access Control (RBAC) ensures that the specialist has the necessary permissions to troubleshoot and manage the NC2 environment. This avoids unnecessary privilege escalations and maintains security.
Confirm the Support Authorization on the organization is set to Full Access (Answer C):
Setting the Support Authorization to Full Access allows the Nutanix support specialist to have the required access to investigate and resolve issues in the environment. This is essential for effective troubleshooting.
Reference:
Nutanix RBAC Documentation
Nutanix Support Access Guide


質問 # 28
An administrator has created an NC2 cluster on AWS, but the NC2 console has issued this alert:

Which two scenarios could have resulted in the cluster creation failure? (Choose two.)

  • A. AWS Quota exceeded/instance limit exceeded
  • B. No available AWS credits
  • C. Bad Terraform (TF) state in provisioning
  • D. Insufficient permissions

正解:A、D

解説:
The error message in the image indicates that the cluster creation failed due to reaching the maximum retries for provisioning cluster nodes. Here are two possible scenarios that could lead to this issue:
Insufficient Permissions (Answer B):
If the AWS user or role used to create the cluster does not have sufficient permissions, it can result in failures during the provisioning process. Proper IAM policies must be attached to ensure that the necessary actions can be performed, such as launching instances, creating VPCs, or managing networking components.
AWS Quota Exceeded/Instance Limit Exceeded (Answer D):
AWS imposes quotas and limits on the number of instances and other resources that can be created within an account. If these quotas are exceeded, new instances cannot be provisioned, causing the cluster creation to fail. This can be resolved by requesting a quota increase from AWS.
Reference:
Nutanix Knowledge Base Article 9774
AWS Service Quotas
Nutanix NC2 on AWS Documentation


質問 # 29
An administrator needs to allow wide open access to one particular NC2 AWS cluster from an on-premises subnet of 10.19.160.0/24.
What is the proper Custom Security Group formatting to satisfy this task?

  • A.
  • B.
  • C.
  • D.

正解:A

解説:
To allow wide open access to a particular NC2 AWS cluster from an on-premises subnet (10.19.160.0/24), the proper Custom Security Group formatting needs to include the necessary tags that specify the external cluster UUID and the networks allowed.
Custom Security Group Configuration:
The configuration should include tags to identify the cluster and the networks that should be granted access.
Key: nutanix:clusters
Key: nutanix:clusters:external
Value: <cluster-uuid>
Explanation of Choice:
Option B includes the necessary tags and values, ensuring that the specific cluster UUID is recognized and the on-premises subnet (10.19.160.0/24) can communicate with the NC2 cluster.
Security Group Tags:
nutanix:clusters:external - Identifies the cluster as external.
nutanix:clusters:external:cluster-uuid - Specifies the unique identifier for the cluster, enabling proper traffic routing and access.
Reference:
Nutanix Cloud Clusters on AWS Administration Guide
AWS Security Group Documentation
Nutanix Best Practices for Custom Security Group Configuration


質問 # 30
An administrator is deploying a new NC2 cluster on AWS and needs to ensure full connectivity is established between the company's on-premises datacenter and the AWS cloud.
Which two AWS offering will satisfy this requirement? (Choose two.)

  • A. ExpressRoute
  • B. Direct Connect
  • C. AWS VPN
  • D. Dedicated interconnect

正解:B、C

解説:
To establish full connectivity between the company's on-premises datacenter and the AWS cloud, the following AWS offerings will satisfy this requirement:
AWS VPN: This service allows you to create a secure connection between your on-premises network or other remote network and your AWS VPC using an IPsec VPN tunnel. It is suitable for low to moderate bandwidth requirements and provides secure, encrypted connections.
Direct Connect: AWS Direct Connect is a dedicated network connection from your premises to AWS. It provides a private, high-bandwidth, low-latency connection which is ideal for high-throughput applications and workloads that need consistent network performance.
Reference:
AWS VPN Documentation
AWS Direct Connect Documentation


質問 # 31
......

最新100%合格率保証付きの素晴らしいNCP-CI-AWS試験問題PDF:https://jp.fast2test.com/NCP-CI-AWS-premium-file.html

検証済みのNCP-CI-AWS問題集77格別な問題:https://drive.google.com/open?id=1rDiu2La_Q187YRhjpMrXYu2bwlKtq85o


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어