Broadcom-VMware
2V0-620 · Question #99
2V0-620 Question #99: Real Exam Question with Answer & Explanation
The correct answer is A: Users remain logged in and can run commands, except to disable lockdown mode.. Enabling lockdown mode on an ESXi host does not forcibly terminate existing ESXi Shell sessions - those users remain logged in and can continue running commands. However, they are specifically blocked from disabling lockdown mode.
Section 1 – Secure vSphere Environments
Question
What happens to the status of users already logged into ESXi Shell when a vSphere administrator enables lockdown mode?
Options
- AUsers remain logged in and can run commands, except to disable lockdown mode.
- BUsers remain logged in and can run commands, including disabling lockdown mode.
- CUsers are immediately logged out of ESXi Shell.
- DUsers are logged out after a timeout specified by the vSphere administrator.
Explanation
Enabling lockdown mode on an ESXi host does not forcibly terminate existing ESXi Shell sessions - those users remain logged in and can continue running commands. However, they are specifically blocked from disabling lockdown mode.
Common mistakes.
- B. This is incorrect because users already logged in cannot disable lockdown mode - that specific operation is restricted as part of lockdown mode enforcement.
- C. Enabling lockdown mode does not immediately terminate active ESXi Shell sessions; existing sessions are preserved with the restriction that lockdown mode cannot be disabled from them.
- D. There is no administrator-configurable timeout that logs out existing shell users upon lockdown mode activation; session termination based on a timeout is not part of the lockdown mode feature.
Concept tested. ESXi lockdown mode effect on active shell sessions
Topics
#lockdown mode#ESXi Shell#security#user sessions
Community Discussion
No community discussion yet for this question.