Broadcom-VMware
2V0-621 · Question #36
2V0-621 Question #36: Real Exam Question with Answer & Explanation
The correct answer is A: Use a Service Principal Name (SPN) to configure the Identity Source.. IWA identity source on VCSA is configured either by joining the appliance to Active Directory using a Machine Account or by specifying a Service Principal Name (SPN).
Question
An administrator needs to create an Integrated Windows Authentication (IWA) Identity Source on a newly deployed vCenter Server Appliance (VCSA). Which two actions will accomplish this? (Choose two.)
Options
- AUse a Service Principal Name (SPN) to configure the Identity Source.
- BUse a Domain administrator to configure the Identity Source.
- CJoin the VCSA to Active Directory and configure the Identity Source with a Machine Account.
- DCreate a computer account in Active Directory for the VCSA and configure the Identity Source.
Explanation
IWA identity source on VCSA is configured either by joining the appliance to Active Directory using a Machine Account or by specifying a Service Principal Name (SPN).
Common mistakes.
- B. Providing a Domain Administrator credential alone is not a recognized configuration method for IWA on VCSA - the identity source requires either a Machine Account (via domain join) or an SPN, not a generic administrative account.
- D. Manually creating a separate computer account in AD is not a distinct supported approach - when joining the VCSA to the domain (option C), the machine account is created automatically as part of that process, making a separate manual creation step redundant and not a prescribed workflow.
Concept tested. Configuring IWA identity source on vCenter Server Appliance
Community Discussion
No community discussion yet for this question.