2V0-622 · Question #220
Which three Authorization types are valid in vSphere? (Choose three.)
The correct answer is A. Group Membership in vsphere.local B. Global D. vCenter Server. vSphere provides several authorization scopes to control how and where access rights are granted across the environment.
Question
Which three Authorization types are valid in vSphere? (Choose three.)
Options
- AGroup Membership in vsphere.local
- BGlobal
- CForest
- DvCenter Server
- EGroup Membership in system-domain
How the community answered
(40 responses)- A93% (37)
- C3% (1)
- E5% (2)
Why each option
vSphere provides several authorization scopes to control how and where access rights are granted across the environment.
Group Membership in vsphere.local is a valid authorization type that allows SSO domain groups from the vsphere.local identity source to be used when assigning permissions.
Global permissions are a valid authorization type in vSphere that apply a permission assignment across all inventory objects in all connected vCenter Server instances and solutions.
Forest is an Active Directory concept describing a collection of domain trees and is not a recognized authorization type within the vSphere permission model.
vCenter Server-level permissions are a valid authorization type that apply to all objects managed within a specific vCenter Server instance.
The vSphere SSO identity domain is vsphere.local, not system-domain; system-domain is not a valid identity source or authorization type in vSphere.
Concept tested: vSphere authorization types and permission scopes
Source: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.security.doc/GUID-18071E9A-EED1-4968-8D51-E0B4F526FDA3.html
Topics
Community Discussion
No community discussion yet for this question.