What Kubernetes objects are vSphere with Tanzu storage polices converted to?
A. Quota policies
B. Storage classes
C. Persistent volumes
D. Storage claims
Correct Answer: B
vSphere with Tanzu storage policies are converted to storage classes when they are assigned to namespaces. A storage class is a Kubernetes object that defines a set of parameters for provisioning persistent volumes1. A storage policy is a vSphere object that defines thecharacteristics of the underlying storage for a given workload2. When a vSphere administrator assigns a storage policy to a namespace, vSphere with Tanzu automatically creates a corresponding storage class in the namespace with the same name as the storage policy3. The storage class references the storage policy ID and allows DevOps engineers to use the storage policy for dynamic provisioning of persistent volumes3. References: Storage Classes - Kubernetes, Create Storage Policies for vSphere with Tanzu - VMware Docs, Assign Storage Policies to Namespaces - VMware Docs
Question 12:
Which two statements describe Kubernetes observability characteristics? (Choose two.)
A. It provides network insight and detailed Kubernetes network topology view
B. Provides visibility into Kubernetes clusters for troubleshooting and impact assessment
C. It observes the code of the applications running in Kubernetes environment
D. Collects real-time metrics from all layers of Kubernetes
E. Automatically heals Kubernetes workloads after an issue has been observed
Correct Answer: BD
Kubernetes observability is the ability to monitor and analyze the performance, health, and behavior of Kubernetes clusters and applications. It provides visibility into Kubernetes clusters for troubleshooting and impact assessment, by collecting logs, events, traces, and alerts from various sources. It also collects real-time metrics from all layers of Kubernetes, such as nodes, pods, containers, services, and network policies, and displays them in dashboards and charts. Kubernetes observability helps administrators and developers to identify and resolve issues, optimize resource utilization, and ensure service quality and reliability. References: VMware Tanzu Observability Documentation, What is Kubernetes Observability?
Question 13:
Which command can be used to upgrade a VMware Tanzu Kubernetes Cluster that is managed by VMware Tanzu Mission Control?
A. tmc cluster upgrade [version]
B. tmc cluster update [clustername] [flags]
C. tmc cluster tanzupackage install update [version]
D. tmc cluster upgrade [version]
Correct Answer: A
The command that can be used to upgrade a VMware Tanzu Kubernetes Cluster that is managed by VMware Tanzu Mission Control is tmc cluster upgrade [version] . This command allows you to upgrade a managed cluster to a newer version of Kubernetes that is supported by Tanzu Mission Control5. The version flag is optional and specifies the target version of Kubernetes. If not specified, the command upgrades the cluster to the latest available version5. The clustername argument is required and specifies the name of the cluster to upgrade5. References: Upgrade Kubernetes on Your Cluster - VMware Docs
Question 14:
What is the key benefit of Tanzu Service Mesh Autoscaler feature?
A. Autoscale microservices
B. Autoscale persistant volumes
C. Autoscale Supervisor control plane VMs
D. Autoscale Tanzu Kubernetes Grid cluster
Correct Answer: A
The key benefit of Tanzu Service Mesh Autoscaler feature is to autoscale microservices that meet changing levels of demand based on metrics, such as CPU or memory usage. These metrics are available to Tanzu Service Mesh without needing additional code changes or metrics plugins1. Tanzu Service Mesh Autoscaler supports configuring an autoscaling policy for services inside a global namespace through the UI or API, or using a Kubernetes custom resource definition (CRD) for services directly in cluster namespaces2. Tanzu Service Mesh Autoscaler also supports two modes: performance mode, where services are scaled up but not down, and efficiency mode, where services are scaled up and down to optimize resource utilization2. References: VMware Aria Operations for Applications, Tanzu Service Mesh Service Autoscaling Overview - VMware Docs
Question 15:
Which two configurations are valid for Zonal Supervisor Deployment? (Choose two.)
A. five-zone
B. seven-zone
C. three-zone
D. two-zone
E. one-zone
Correct Answer: CE
Two configurations that are valid for Zonal Supervisor Deployment are three- zone and one-zone. A Zonal Supervisor Deployment is a way of deploying the vSphere with Tanzu Supervisor Cluster across multiple vSphere clusters that are mapped to vSphere Zones1. A vSphere Zone is a logical grouping of vSphere clusters that share common characteristics, such as network connectivity, power source, or physical location2. A Zonal Supervisor Deployment provides high availability and fault tolerance for Kubernetes workloads by distributing them across different zones1. The supported configurations for Zonal Supervisor Deployment are: Three-zone: The Supervisor Cluster spans three vSphere clusters, each mapped to a different vSphere Zone. This configuration provides the highest level of availability and fault tolerance, as it can tolerate the failure of any one zone1. One-zone: The Supervisor Cluster runs on a single vSphere cluster that is mapped to a single vSphere Zone. This configuration is suitable for development or testing purposes, but does not provide any availability or fault tolerance guarantees1. References: Requirements for Zonal Supervisor Deployment - VMware Docs, Create vSphere Zones for a Multi-Zone Supervisor Deployment - VMware Docs
Question 16:
Which statement describes Harbor?
A. Harbor requires that all images are pulledfrom GitHub and is used for image validation and verification.
B. Harbor formerly known as Bitnami, is an image catalog used for downloading verified open source packages.
C. Harbor is an open source registry that secures artifacts with policies and role-based access control, ensures images are scanned and free from vulnerabilities, and signs images as trusted.
D. Harbor is an image scanner used to verify that images are free from known vulnerabilities and patches as necessary.
Correct Answer: C
The statement that describes Harbor accurately is that Harbor is an open source registry that secures artifacts with policies and role-based access control, ensures images are scanned and free from vulnerabilities, and signs images as trusted. Harbor is a cloud native repository for Kubernetes that provides features such as image management, vulnerability scanning, content signing, access control, replication, and quota management3. Harbor is a graduated project of the Cloud Native Computing Foundation (CNCF) and is integrated with VMware Tanzu products and services4. References: Harbor, Harbor - CNCF
Question 17:
What are three VMware products that VMware Tanzu Kubernetes Grid natively integrates with? (Choose three.)
A. NSX Advanced Load Balancer
B. NSX-T Data Center
C. BOSH
D. vSphere with VMware Tanzu
E. vRealize Network Insight
F. Tanzu Mission Control
Correct Answer: ABD
VMware Tanzu Kubernetes Grid is an enterprise-ready Kubernetes runtime that streamlines operations across multi-cloud infrastructure1. Tanzu Kubernetes Grid natively integrates with the following VMware products: NSX Advanced Load Balancer: A solution that provides L4 and L7 load balancing and ingress control for Kubernetes clusters. NSX Advanced Load Balancer can be used as the default load balancer provider for both management and workload clusters on vSphere, AWS, Azure, and other platforms2. NSX-T Data Center: A network virtualization and security platform that provides consistent networking and security for applications running across private and public clouds. NSX-T Data Center can be used as the default network plugin for both management and workload clusters on vSphere, AWS, Azure, and other platforms3. vSphere with VMware Tanzu: A solution that enables you to run Kubernetes workloads natively on a vSphere cluster, and to provision and manage Kubernetes clusters using the vSphere Client. vSphere with VMware Tanzu can be used as the platform to deploy Tanzu Kubernetes Grid management clusters and workload clusters4. The other options are incorrect because: BOSH is an open-source tool that provides release engineering, deployment, lifecycle management, and monitoring of distributed systems. BOSH is not a VMware product, nor does it natively integrate with Tanzu Kubernetes Grid5. vRealize Network Insight is a solution that delivers intelligent operations for software-defined networking and security. It helps optimize network performance and availability with visibility and analytics across virtual and physical networks. vRealize Network Insight is not natively integrated with Tanzu Kubernetes Grid6. Tanzu Mission Control is a centralized management platform for consistently operating and securing your Kubernetes infrastructure and modern applications across multiple teams and clouds. Tanzu Mission Control is not natively integrated with Tanzu Kubernetes Grid, but rather works with it as a separate product7. References: VMware Tanzu Kubernetes Grid Overview, NSX Advanced Load Balancer, NSX-T Data Center, vSphere with VMware Tanzu, BOSH, vRealize Network Insight, Tanzu Mission Control Overview
Question 18:
Which tool can be used to backup and restore workloads on clusters provisioned by the VMware Tanzu Kubernetes Grid Service?
A. Site Recovery Manager
B. Restic
C. VMware vSohere Data Protection
D. Velero Plugin for VMware vSphere
Correct Answer: D
A tool that can be used to backup and restore workloads on clusters provisioned by the VMware Tanzu Kubernetes Grid Service is the Velero Plugin for VMware vSphere. The Velero Plugin for VMware vSphere is an extension of Velero, an open source tool that performs backup and restore of Kubernetes resources and persistent volumes5. The plugin leverages the snapshot capabilities of vSphere to create backups of Kubernetes workloads running on vSphere-managed infrastructure, such as VMware Cloud on AWS or VMware Cloud on Dell EMC5. The plugin also supports restoring backups to the same or different clusters, as well as migrating workloads across clusters5. References: Velero Plugin for VMware vSphere Documentation
Question 19:
Which two StorageClass objects are supported by the VMware Tanzu Kubernetes Grid? (Choose two.)
A. Azure Glacier
B. vSphere Cloud Native Storage (CNS)
C. Linux Remote File Services
D. Samba
E. Amazon EBS
Correct Answer: BE
VMware Tanzu Kubernetes Grid supports StorageClass objects for different storage types, provisioned by Kubernetes internal ("in-tree") or external ("out-of-tree") plug- ins. Two of the supported storage types are vSphere Cloud Native Storage (CNS) and Amazon EBS. vSphere Cloud Native Storage (CNS) is a vSphere feature that provides persistent storage for Kubernetes clusters running on vSphere 6.7 or later. CNS integrates with the vSphere Container Storage Interface (CSI) driver to dynamically provision persistent volumes backed by First Class Disks on a datastore1. Amazon EBS is a block storage service that provides persistent storage for Amazon EC2 instances. EBS volumes can be attached to EC2 instances as block devices, and can be used to create persistent volumes for Kubernetes clusters running on AWS2. Both CNS and EBS support dynamic provisioning of persistent volumes using StorageClass objects with the provisioner field set to csi.vsphere.vmware.com and kubernetes.io/aws-ebs respectively12. References: Back Up and Restore Cluster Workloads - VMware Docs, Amazon Elastic Block Store (EBS) - Amazon Web Services
Question 20:
An administrator set the following value:ENABLE_AUDIT_LOGGING=trueduring a cluster deployment. What was the purpose of this setting?
A. Log metadata about all requests made to the Kubernetes API server.
B. Enable log redirection to external logging server by Fluent Bit.
C. Run scripts that collect Kubernetes API output,node logs, and node command-line output.
D. Activate the kubectl describe command for CustomResourceDefinitions (CRDs) introduced byCluster API.
Correct Answer: A
The purpose of setting ENABLE_AUDIT_LOGGING=true during a cluster deployment is to log metadata about all requests made to the Kubernetes API server. This enables auditing of the cluster activities and helps with security and compliance. The audit logs are stored in /var/log/kubernetes/audit.log on the control plane node and can be accessed by the cluster administrator. The audit logs are generated based on an audit policy file that defines what events should be recorded and what data they should include12 References: 1: https://docs.vmware.com/en/VMware-Tanzu-Kubernetes-Grid/1.6/vmware- tanzu-kubernetes-grid-16/GUID-troubleshooting-tkg-audit-logging.html 2: https://kubernetes.io/docs/tasks/debug/debug-cluster/audit/
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only VMware exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 2V0-71.23 exam preparations and VMware certification application, do not hesitate to visit our Vcedump.com to find your solutions here.