VMware vSphere 7.x Advanced Design (VCAP-DCV Design 2021) — Question 40

An architect is designing a new greenfield environment with 600 ESXi hosts in an automated fashion. The engineering department already has a PXE Boot server,
TFTP server, and DHCP server set up with an NFS mount for their current Linux servers.
The architect must be able to demonstrate and meet a security requirement to have all infrastructure processes separated.
Which recommendation should the architect make for the ESXi host deployment?

Answer options

• A. Request an isolated network segment to use and dedicate it to Auto Deploy functions
• B. Ask the business to expand the engineering environment to service the virtual environment as well
• C. Request a common shared network with flexible security measures to accommodate different auto deployment options
• D. Deploy each ESXi host individually and document it to satisfy security requirements

Correct answer: A

Explanation

The correct answer is A because using an isolated network segment for Auto Deploy functions ensures that the deployment process is secure and separate from other infrastructure activities. Options B and C do not provide the necessary isolation, which is crucial for meeting security requirements. Option D, while documenting the deployment process is good practice, does not adhere to the need for separation of infrastructure processes.