Home » VMware » 5V0-21.19 » Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?

Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?

12/18/2019 – by Mod_GuideK 9

An organization is no longer compliant with security requirements because a vSphere administrator disabled encryption on a vSAN cluster. Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?
A. Administrator
B. Read-only
C. No cryptography administrator
D. No access

SHOW ANSWERS

9 thoughts on “Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?”

YM says:

11/04/2021 at 5:58 AM

A

Reply
izzet says:

12/17/2020 at 1:13 PM

Correct answer is C

Reply
Anonymous says:

08/20/2020 at 4:47 AM

This is an absolute dick of a question.

Technically, the answer is A or C depending on what they are asking – but they don’t specify.

It obviously could be A, because you can ensure only authorized vSphere administrators have access to encryption functionality by only adding users who should have access to the Administrators group.

And it could also be C, because you can ensure only authorized vSphere administrators have access to encryption functionality by adding vSphere administrators are NOT authorized to the No cryptography administrators group.

They are such bastards for including questions like this in exams.

2

Reply
Rog says:

07/22/2020 at 2:25 PM

Answer is A.

B and D are obviously not an option. C cannot be an option as follows (https://storagehub.vmware.com/t/vsan-6-7-update-1-technical-overview/role-based-access-control-4/)

No Cryptography Administrator and vSAN Encryption
Users assigned to the No Cryptography Administrator role ARE NOT granted the following privileges:
– The ability to enable or disable vSAN Encryption
– The ability to generate new encryption keys (Shallow or Deep Rekey)
– The ability to add hosts to vCenter.

Users assigned to the No Cryptography Administrator role ARE granted the following privileges:
– Direct console access to virtual machines that reside on a vSAN Cluster with vSAN Encryption enabled
– The ability to download virtual machines that reside on a vSAN Cluster with vSAN Encryption enabled.
– The ability to add hosts to a vSAN Cluster*.

1

Reply
Marin says:

05/18/2020 at 1:56 PM

It C bots

Reply
Montano C says:

05/10/2020 at 3:54 PM

Right Answer is A
No Cryptography Administrator Role is not allowed to perform any cryptographic operations (that’s mean encryption functionality)
https://storagehub.vmware.com/t/vsan-6-7-update-1-technical-overview/role-based-access-control-4/

Reply
Harikrishna Kamma says:

03/18/2020 at 5:30 PM

The answer is C, kindly read the question taking time to understand better.

2
2

Reply
Anouar says:

01/23/2020 at 1:26 PM

The correct Answer is A, you should have administrator permission to allow user to use encryption functionality.

3

Reply
ELshan says:

01/20/2020 at 1:10 PM

I think this is A

2

Reply

9 thoughts on “Which vCenter Server role ensures only authorized vSphere administrators have access to encryption functionality?”

Leave a Reply Cancel reply