VMware 2V0-21.23 Exam - Topic 1 Question 1 Discussion

Actual exam question for VMware's 2V0-21.23 exam

Question #: 1
Topic #: 1

Following a merger with another company, an administrator is tasked with configuring an identity source for VMware vCenter so that all vSphere administrators can authenticate using their existing Active Directory accounts. Each company has user accounts in their own Active Directory forests.

The following additional information has been provided:

* The corporate policy states that only Windows-based machine accounts are allowed in Active Directory. Which action should the administrator take to configure vCenter Single Sign-On (SSO) to meet this requirement?

AConfigure SSO to use Active Directory over LDAP as the identity source.

BConfigure SSO to use OpenLDAP as the identity source.

CJoin the vCenter Server Appliance to the LDAP domain.

DConfigure SSO to use Active Directory (Integrated Windows Authentication) as the identity source.

Show Suggested Answer

Suggested Answer: D

The action that should be taken to configure SSO to use existing Active Directory accounts without creating machine accounts in Active Directory is to configure SSO to use Active Directory (Integrated Windows Authentication) as the identity source, which allows using Windows session authentication credentials.

by Beckie at May 30, 2023, 05:34 AM

Limited Time Offer

25%

Off

Get Premium 2V0-21.23 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Michael

4 months ago

I thought we couldn't mix forests like that?

upvoted 0 times

...

Reuben

4 months ago

Totally agree with D, it's the best fit for Windows accounts.

upvoted 0 times

...

Tenesha

4 months ago

Wait, can you really use OpenLDAP here? Seems off.

upvoted 0 times

...

Isaac

4 months ago

A is the way to go, right? LDAP is solid.

upvoted 0 times

...

Jordan

4 months ago

Gotta go with D for Integrated Windows Authentication!

upvoted 0 times

...

Theron

5 months ago

I vaguely remember that joining the vCenter Server to the domain could be a step, but I don't think that's the main action needed for SSO configuration.

upvoted 0 times

...

Ben

5 months ago

I'm a bit confused about the difference between OpenLDAP and Active Directory in this context. I don't recall if we covered that in depth.

upvoted 0 times

...

Clemencia

5 months ago

I think we practiced a similar question where we had to choose between LDAP and Integrated Windows Authentication. I feel like D might be the best option.

upvoted 0 times

...

Lera

5 months ago

I remember we discussed the importance of using Active Directory for authentication, but I'm not sure if LDAP is the right choice here.

upvoted 0 times

...

Alecia

5 months ago

I've got a good feeling about this one. The Architecture Vision is all about establishing the high-level direction and principles for the enterprise architecture, so I'm going to go with A, architecture principles. That seems like the most logical choice based on my understanding of TOGAF.

upvoted 0 times

...

Samuel

5 months ago

I'm pretty confident the answer is A. The !ctrl:c2 attribute is clearly telling Volume Manager to exclude devices connected to controller c2.

upvoted 0 times

...

Deeanna

5 months ago

Hmm, this looks like a tricky one. I'll need to carefully trace through the code to figure out the minimum number of test cases required for path coverage.

upvoted 0 times

...

Val

5 months ago

Okay, I think I've got a good handle on this. The STS service allows RAM users or roles to obtain temporary tokens to access Alibaba Cloud APIs and the web console. The request format and authentication process also seem clear to me. I'm confident I can select the right 3 answers.

upvoted 0 times

...