READ Free Dumps For VMware- 2V0-621
Question ID 21783 | Which three components should an administrator select when configuring vSphere permissions? (Choose three.)
|
Option A | Inventory Object
|
Option B | Role
|
Option C | User/Group
|
Option D | Privilege
|
Option E | Password
|
Correct Answer | B,C,D |
Explanation Answer must be B,C,D To manage permissions from the vSphere Web Client, you need to understand the following concepts: Permissions Each object in the vCenter Server object hierarchy has associated permissions. Each permission specifies for one group or user which privileges that group or user has on the object. Users and Groups On vCenter Server systems, you can assign privileges only to authenticated users or groups of authenticated users. Users are authenticated through vCenter Single Sign-On. The users and groups must be defined in the identity source that vCenter Single Sign-On is using to authenticate. Define users and groups using the tools in your identity source, for example, Active Directory. Roles Roles allow you to assign permissions on an object based on a typical set of tasks that users perform. Default roles, such as Administrator, are predefined on vCenter Server and cannot be changed. Other roles, such as Resource Pool Administrator, are predefined sample roles. You can create custom roles either from scratch or by cloning and modifying sample roles. Privileges Privileges are fine-grained access controls. You can group those privileges into roles, that you can then map to users or groups. Reference: https://pubs.vmware.com/vsphere-60/index.jsp?topic=%2Fcom.vmware.vsphere.security.doc%2FGUID-3B78EEB3-23E2-4CEB-9FBD-E432B606011A.html
Question ID 21784 | In which two vsphere.local groups should an administrator avoid adding members? (Choose two.)
|
Option A | SolutionUsers
|
Option B | Administrators
|
Option C | DCAdmins
|
Option D | ExternalPDUsers
|
Correct Answer | A,B |
Explanation Explanation: SolutionUsers Solution usersgroup vCenter services. Each solution user authenticates individually to vCenter Single Sign-On with a certificate. By default, VMCA provisions solution users with certificates. Do not add members to this group explicitly. Administrators Administrators of the VMware Directory Service (vmdir). Members of this group can perform vCenter Single Sign-On administration tasks. Adding members to this group is not usually recommended. Reference: https://pubs.vmware.com/vsphere-60/index.jsp?topic=%2Fcom.vmware.vsphere.security.doc%2FGUID-87DA2F34-DCC9-4DAB-8900-1BA35837D07E.html