Free Preparation Discussions
MENU
VMware Exam 2V0-13.24 Topic 2 Question 12 Discussion
Topic #: 2
An architect had gathered the following requirements and constraints for a VMware Cloud Foundation (VCF) deployment.
Requirements:
* User interface (UI) SSL certificates must have a maximum validity of 6 months.
* Have the least possible administrative time to install and renew certificates.
* Each certificate must be created on a per VCF component basis.
Constraints:
* Limited administrative skillsets on SSL certificate administration
* Limited operational expenditure budget for SSL certificates
Which design decision should be made to satisfy the stated requirement(s) and constraint(s)?
The requirements demand per-component certificates with 6-month validity and minimal admin effort, while constraints limit skills and budget. Option D, 'Use and configure integration with Microsoft Certificate Authority (CA),' meets all criteria: Microsoft CA (integrated via SDDC Manager in VCF 5.2) supports individual certificates per component (e.g., vCenter, NSX), allows short validity periods, automates renewal (reducing effort), and leverages existing infrastructure (low cost, skill-friendly). Option A (wildcard certificates) violates per-component needs. Option B (DigiCert) incurs higher costs and requires more skill. Option C (disabling SSL) compromises security, failing compliance. Microsoft CA aligns with VCF's certificate management capabilities.
Currently there are no comments in this discussion, be the first to comment!