Examice

Exam 5v0-3122 All QuestionsBrowse all questions from this exam

Question 66

A VMware Cloud Foundation administrator has been tasked with replacing self-signed certificates with those signed by a third-party Certificate Authority. A security policy disallows the integration and use of Microsoft Active Directory Certificate Services and prefers an external provider.

Which two steps must be taken in order to configure these certificates? (Choose two.)

Generate Certificate Signing Requests from SDDC Manager.

Ensure that the external provider has Administrator rights in vCenter.

Create and package the certificates in a domain_name.tar.gz file.

Use the sddcmanager-ssl-util.sh utility to list and delete existing certificates.

Generate public-private key pairs using the external provider.

Correct Answer: A, C

To replace self-signed certificates with those signed by a third-party Certificate Authority in VMware Cloud Foundation, the administrator needs to perform the following steps: Generate Certificate Signing Requests from SDDC Manager, and create and package the certificates in a domain_name.tar.gz file. The generated CSR is sent to the third-party provider, who then signs the certificate, and the signed certificates are packaged properly before being imported back into the system.

Discussion

xniclas

https://docs.vmware.com/en/VMware-Cloud-Foundation/4.4/vcf-admin/GUID-2A1E7307-84EA-4345-9518-198718E6A8A6.html

Doggy95Options: AC

Correct Answer is A & C

diegof1Options: AE

AE should be the corre. C is correct. However, that occurs after certificates have been signed by the Third-Party CA

DanieltecOptions: AE

Correct Answer is A & E. C is last task