4.3.1 – Configure Identity Federation

vSphere Identity Federation uses OAUTH 2.0 and OIDC to connect to these systems. The configuration of vCenter Identity federation has three principal phases: Creating an app group on the MS ADFS server and configuring it for vCenter Server Creating an identity provider via the vCenter SSO Administration configuration page Configuring group membership in vCenter to […]

4.1 – Describe single sign-on (SSO) deployment topology

Every vCenter has its own SSO domain and when installing an appliance you’ll need to determine to either join an existing one or create a new one. If you decide to create a new one, you’ll need to login to each vCenter instance separately and this could be cumbersome. Therefor it’s easier to join an […]

2.5 – Describe vSphere integration with VMware Skyline

VMWare skyline is a proactive support technology that provides predictive analysis and proactive recommendations to help you avoid problems. You have to enable the Customer Experience Improvement Program CEIP and have an internet connectivity. Issue avoidance Proactively identifies potential issues based on environment-specific configuration, details and usage Resolves issues before they occur, improving environment reliability […]

2.4 – Identify DR use cases

There could be several kinds of failures you have to face with. Regional Datacenter Individual Racks Individual hosts OS / Apps Network A disaster recovery is an org’s method of regaining access and functionality to its IT infra after events like a natural disaster, cyber-attack or a business disruption. vSphere Replication Hypervisor based asynchronous replication […]

2.3 – Identify migration options

Cold migrations: move powered-off or suspended VM’s between hosts or datastores hot migrations: move powered-on VM’s between hosts or datastores Cross-host migrations: allows you to initiate cross-host migrations where you can choose the destination host, DRS cluster, resource pool or vAPP. Cross-datastore migrations: moving VM’s to a new datastore Cross vCenter migrations: moving VM’s from […]

2.2 – Identify use cases for vCloud Foundation

vCloud is the unified SDDC platform that bundles vSphere, vSAN and NSX into a natively integrated stack to deliver enterprise-ready cloud infrastructure. vCloud discovers the hardware, installs the VMware stack, manages updates and performs lifecycle management. It can be self-deployed on compatible hardware or preloaded by partners and can be used in both private and […]

1.11 – Explain Software Guard Extensions (SGX)

Some modern Intel CPUs implement a security extension called Intel Software Guard Extensions. It’s a processor-specific technology for application developers who seek to protect select code and data from disclosure or modification. It allows user-level code to define private regions of memory and these are protected such that code running outside this region cannot access […]

1.10 – Describe the vSphere Trust Authority architecture 

vSphere Trust Authority enhances workload security. It associates an ESXi host’s hardware root of trust to the workload itself. It’s a set of services to satisfy high security requirements and you can ensure that sensitive workloads run only on ESXi hosts proven to have booted authentic software. You’ll have to “attest” your ESXi hosts, which […]

1.9.1 – Identify basic vSAN requirements(networking, disk count + type)

It requires: Minimum of three hosts to be part of the vSphere cluster and configured for vSAN A vSAN network One SAS or SATA host bus adapter or a RAID controller that is in passthrough mode or RAID 0 mode Local disks on each host that are pooled to create a virtual shared vSAN datastore. […]