VMware vSphere 6 Advanced Design (VCAP6-DCV Design) — Question 44

A customer has requested a vSphere 6.5 deployment design that utilizes vCenter Server and the use of VMware-recommended best practices for securing vCenter Server.
Which three actions would satisfy these requirements? (Choose three.)

Answer options

• A. Utilizing vSphere CLI and vSphere SDK for Perl scripts.
• B. Restricting vCenter Server access to only the management network.
• C. Assigning the default Administrator role to all administrator users.
• D. Synchronizing time in the vCenter Server with a NTP source.
• E. Removing expired and revoked certificates from vCenter Server system.

Correct answer: A, B, D

Explanation

Using vSphere CLI and vSphere SDK for Perl scripts helps automate and secure management tasks. Restricting access to the management network enhances security by minimizing exposure. Synchronizing time with an NTP source ensures accurate timestamps for logs and operations, which is critical for security and troubleshooting. Assigning the default Administrator role broadly can lead to security risks, and while managing certificates is important, it does not directly relate to securing access to vCenter Server.