READ Free Dumps For VMware- 2V0-621
Question ID 21801 | Which three options are available for replacing vCenter Server Security Certificates? (Choose three.)
|
Explanation
Question ID 21802 | Which three options are available for replacing vCenter Server Security Certificates? (Choose three.)
|
Option A | Replace with Certificates signed by the VMware Certificate Authority.
|
Option B | Make VMware Certificate Authority an Intermediate Certificate Authority.
|
Option C | Do not use VMware Certificate Authority, provision your own Certificates.
|
Option D | Use SSL Thumbprint mode.
|
Option E | Replace all VMware Certificate Authority issued Certificates with self-signed Certificates.
|
Correct Answer | A,B,D |
Explanation Explanation: ESXi CertificateReplacement For ESXi hosts, you can change certificate provisioning behavior from the vSphere Web Client. VMware Certificate Authority mode (default) When you renew certificates from the vSphere Web Client, VMCA issues the certificates for the hosts. If you changed the VMCA root certificate to include a certificate chain, the host certificates include the full chain. Custom Certificate Authority mode Allows you to manually update and use certificates that are not signed or issued by VMCA. Thumbprintmode Can be used to retain 5.5 certificates during refresh. Use this mode only temporarily in debugging situations. Reference: https://pubs.vmware.com/vsphere-60/index.jsp?topic=%2Fcom.vmware.vsphere.install.doc%2FGUID-4469A6D3-048A-471C-9CB4-518A15EA2AC0.html