Discover the three possible symptoms that could trigger a compliance alert in a VMware SDDC not fully compliant with the vSphere Security Configuration Guide.
Table of Contents
Question
An administrator deployed vRealize Operations and has been tasked with ensuring that the VMware SDDC remains compliant to the VMware vSphere Security Configuration Guide. The compliance benchmark is showing that the VMware SDDC is not completely compliant to the standards.
Which three symptoms could have triggered a compliance alert? (Choose three.)
A. The lockdown mode on a vSphere ESXi host is set to Disabled.
B. Transparent Page Sharing is Disabled on a virtual machine.
C. The SNMP service on a vSphere ESXi host is set to Disabled.
D. The Enable 3D Support setting for the Virtual Machine is set to FALSE.
E. The Disable console copy operation for a Virtual Machine is set to FALSE.
F. The Forged Transmit policy is set to allow on a Distributed Port Group.
Answer
A. The lockdown mode on a vSphere ESXi host is set to Disabled.
E. The Disable console copy operation for a Virtual Machine is set to FALSE.
F. The Forged Transmit policy is set to allow on a Distributed Port Group.
Explanation
Disabled lockdown mode on an ESXi host (A) leaves the host vulnerable to unauthorized access and modifications.
Allowing console copy operations on a VM (E) introduces data exfiltration risks.
Permitting forged transmits on a distributed port group (F) enables MAC address spoofing, potentially compromising network security.
These misconfigurations deviate from VMware’s security best practices, triggering compliance alerts to maintain a secure SDDC.
VMware vRealize Operations Specialist 5V0-35.21 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the VMware vRealize Operations Specialist 5V0-35.21 exam and earn VMware vRealize Operations Specialist 5V0-35.21 certification.