Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Nutanix NCP-CI-AWS Exam - Topic 4 Question 37 Discussion

Actual exam question for Nutanix's NCP-CI-AWS exam
Question #: 37
Topic #: 4
[All NCP-CI-AWS Questions]

An administrator needs to allow wide open access to one particular NC2 AWS cluster from an on-premises subnet of 10.19.160.0/24.

What is the proper Custom Security Group formatting to satisfy this task?

A)

B)

C)

D)

Show Suggested Answer Hide Answer
Suggested Answer: B

To allow wide open access to a particular NC2 AWS cluster from an on-premises subnet (10.19.160.0/24), the proper Custom Security Group formatting needs to include the necessary tags that specify the external cluster UUID and the networks allowed.

Custom Security Group Configuration:

The configuration should include tags to identify the cluster and the networks that should be granted access.

Key: nutanix:clusters

Key: nutanix:clusters:external

Value: <cluster-uuid>

Explanation of Choice:

Option B includes the necessary tags and values, ensuring that the specific cluster UUID is recognized and the on-premises subnet (10.19.160.0/24) can communicate with the NC2 cluster.

Security Group Tags:

nutanix:clusters:external - Identifies the cluster as external.

nutanix:clusters:external:cluster-uuid - Specifies the unique identifier for the cluster, enabling proper traffic routing and access.


Nutanix Cloud Clusters on AWS Administration Guide

AWS Security Group Documentation

Nutanix Best Practices for Custom Security Group Configuration

by Yan at Apr 06, 2026, 03:36 AM

Limited Time Offer

25%

Off

Get Premium NCP-CI-AWS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kirk
3 days ago
I think Option B is the right choice here.
upvoted 0 times
...
Ronnie
9 days ago
Option A looks good for wide open access.
upvoted 0 times
...
Melynda
30 days ago
I feel like option C might be the right choice since it looks familiar, but I can't shake the feeling that I need to double-check the rules for inbound and outbound traffic.
upvoted 0 times
...
Gilberto
1 month ago
If I remember correctly, the security group should allow inbound traffic from 10.19.160.0/24, but I’m a bit confused about whether it should specify the protocol as well.
upvoted 0 times
...
Man
1 month ago
I think we practiced a similar question where we had to allow access from a specific IP range, but I can't recall the exact formatting for the security group rules.
upvoted 0 times
...
Malinda
2 months ago
I remember we discussed security groups allowing specific CIDR blocks, but I'm not sure if it should be set to allow all traffic or just specific protocols.
upvoted 0 times
...

Save Cancel