VMware App Volumes (VCP-AM 2019) — Question 67
An organization is no longer compliant with security requirements because a vSphere administrator disabled encryption on a vSAN cluster.
Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?
Answer options
- A. Administrator
- B. Read-only
- C. No cryptography administrator
- D. No access
Correct answer: C
Explanation
The 'No cryptography administrator' role is specifically designed to control access to encryption settings, ensuring that only authorized users can enable or disable encryption. The 'Administrator' role grants full access, which can lead to non-compliance if misused. 'Read-only' and 'No access' roles do not provide the necessary permissions to manage encryption functionality.