VMware App Volumes Specialist (2021) — Question 50

Due to an update in their security requirements, an organization is no longer compliant because the metadata traffic between hosts in their vSAN cluster is not being encrypted.

Which step must be taken by the administrator to meet the new security requirements?

Answer options

• A. Enable vMotion encryption on the vSAN cluster.
• B. Enable virtual machine encryption on the vSAN cluster.
• C. Enable Data-At-Rest Encryption on the vSAN cluster.
• D. Enable Data-In-Transit Encryption on the vSAN cluster.

Correct answer: D

Explanation

The correct action is to enable Data-In-Transit Encryption on the vSAN cluster, as this specifically secures the metadata traffic between hosts. The other options, while important for other aspects of security, do not address the requirement for encrypting data that is actively being transmitted.