ExamTopics Logo
Mail Us[email protected]
Menu
Vmware Discussions
exam questions

Exam 2V0-11.25 All Questions

View all questions & answers for the 2V0-11.25 exam
Go to Exam

Exam 2V0-11.25 topic 1 question 57 discussion

Actual exam question from VMware's 2V0-11.25
Question #: 57
Topic #: 1
[All 2V0-11.25 Questions]

Following an update to the Information Security policy, an administrator has been reviewing the status SSL certificates within the VMware Cloud Foundation (VCF) solution.
The new Information Security Policy states:
All SSL certificates must be generated and signed from the shared Microsoft Certificate Authority (CA).
The administrator has discovered the following:
All Aria Suite Components already use CA-signed Subject Alternate Name (SAN) SSL certificates.
All other VCF-based SSL certificates are either self-signed or generated using the VMware Certificate Authority (VMCA).
Which three steps must the administrator take to ensure the VCF solution remains compliant and managed by SDDC Manager? (Choose three.)

  • A. In VMware vCenter, replace the ESXi SSL certificates.
  • B. Integrate the OpenSSL CA into SDDC Manager.
  • C. Integrate the Microsoft CA into SDDC Manager.
  • D. In SDDC Manager, replace the SSL certificates for vCenter, NSX Manager, SDDC Manager and Aria Suite Lifecycle.
  • E. In Aria Suite Lifecycle, replace the VMware Identity Manager, Aria Automation, Aria Operations and Aria Operations for Logs SSL certificates.
  • F. In SDDC Manager, replace the SSL certificates for vCenter, ESXi, NSX Manager, SDDC Manager and Aria Suite Lifecycle.
Show Suggested Answer Hide Answer
Suggested Answer: ACD 🗳️
by 9e7c4f1 at May 8, 2025, 1:30 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
9e7c4f1
Highly Voted 1 month, 3 weeks ago
Selected Answer: ACD
ACD ESXi certs replaced in vCenter
upvoted 6 times
...
BrianOC
Most Recent 1 month, 2 weeks ago
Selected Answer: CDF
• A. In vCenter, replace the ESXi SSL certificates – If you manually replace ESXi certs via vCenter (outside of SDDC Manager), you break VCF management compliance. VCF expects all certificate operations to be performed via SDDC Manager. • B. Integrate the OpenSSL CA into SDDC Manager – Not supported. VCF supports Microsoft CA integration, not OpenSSL directly. • E. In Aria Suite Lifecycle, replace certificates for Aria products – This is already compliant (per the question: Aria Suite already uses CA-signed certs), so no action is needed here.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel