nerdexam
Broadcom-VMware

2V0-21.23 · Question #46

An administrator manually configures a reference ESXi host that meets company security standards for vSphere environments. The administrator now needs to apply all of the security standards to every i

The correct answer is A. Extract the host profile from the reference host. D. Attach the host profile to each cluster that requires the secure configuration. E. Check the compliance of each host against the host profile. G. Remediate all non-compliant hosts.. To apply security standards from a reference ESXi host across multiple vSphere clusters using Host Profiles, an administrator must extract the profile, attach it to target clusters, check compliance, and then remediate any non-compliant hosts.

Administrative and Operational Tasks

Question

An administrator manually configures a reference ESXi host that meets company security standards for vSphere environments. The administrator now needs to apply all of the security standards to every identically configured host across multiple vSphere clusters within a single VMware vCenter instance. Which four steps would the administrator complete to meet this requirement? (Choose four.)

Options

  • AExtract the host profile from the reference host.
  • BExport the host profile from vCenter.
  • CImport host customization on the reference host.
  • DAttach the host profile to each cluster that requires the secure configuration.
  • ECheck the compliance of each host against the host profile.
  • FReset host customization on the reference host.
  • GRemediate all non-compliant hosts.

How the community answered

(65 responses)
  • A
    72% (47)
  • B
    8% (5)
  • C
    17% (11)
  • F
    3% (2)

Why each option

To apply security standards from a reference ESXi host across multiple vSphere clusters using Host Profiles, an administrator must extract the profile, attach it to target clusters, check compliance, and then remediate any non-compliant hosts.

AExtract the host profile from the reference host.Correct

The first step is to capture the desired configuration from the reference host by extracting a host profile, which creates a template of its settings.

BExport the host profile from vCenter.

Exporting a host profile saves it to a file, which is not the operational step for applying it within vCenter.

CImport host customization on the reference host.

Importing host customization is for applying specific network or storage configurations after a profile has been applied, not for initially creating or widely applying a profile.

DAttach the host profile to each cluster that requires the secure configuration.Correct

Once the host profile is created, it must be attached to the vSphere clusters or individual hosts that need to inherit these standardized configurations, linking the profile to the target objects.

ECheck the compliance of each host against the host profile.Correct

After attaching the profile, compliance checks are performed to identify any hosts that deviate from the configuration defined in the host profile, revealing which hosts are not conforming to the security standards.

FReset host customization on the reference host.

Resetting host customization clears specific host-level overrides, which is irrelevant to the process of creating and applying a new host profile.

GRemediate all non-compliant hosts.Correct

Hosts found to be non-compliant must be remediated, which applies the configuration settings from the attached host profile to bring them into compliance with the defined security standards.

Concept tested: vSphere Host Profiles for configuration standardization

Source: https://docs.vmware.com/en/VMware-vSphere/8.0/com.vmware.vsphere.hostprofiles.doc/GUID-D599F8D6-66EB-4B85-BB3B-49270F3A5023.html

Topics

#Host profiles#ESXi configuration#Security standards#Remediation

Community Discussion

No community discussion yet for this question.

Full 2V0-21.23 Practice