
























































































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
This foundational exam tests basic operational knowledge such as navigating VMware Cloud console, understanding SDDC architecture, identifying core vSphere and NSX components, monitoring resource utilization, basic troubleshooting workflows, and cloud-to-on-premises interoperability fundamentals. The practice exam includes conceptual and scenario-based tasks appropriate for entry-level cloud professionals.
Typology: Exams
1 / 96
This page cannot be seen from the preview
Don't miss anything!

























































































Question 1. Which deployment model combines on‑premises resources with public cloud services to allow workload mobility? A) Private cloud B) Public cloud C) Hybrid cloud D) Community cloud Answer: C Explanation: A hybrid cloud integrates private (on‑premises) and public cloud resources, enabling seamless workload movement between them. Question 2. In VMware Cloud on AWS, which component provides the compute, storage, and networking foundation for the SDDC? A) Amazon EC2 bare‑metal hosts B) AWS Lambda functions C) Amazon RDS instances D) Amazon S3 buckets Answer: A Explanation: VMware Cloud on AWS runs on dedicated bare‑metal Amazon EC2 instances that host the ESXi hypervisor, vSAN, and NSX‑T. Question 3. What is the primary role of vCenter Server within a VMware Cloud on AWS SDDC? A) Provides DNS services for the VPC B) Manages the ESXi hosts, VMs, and inventory C) Hosts the VMware Cloud Console UI D) Handles AWS billing for the SDDC
Answer: B Explanation: vCenter Server is the management plane that controls ESXi hosts, virtual machines, clusters, and other resources. Question 4. Which VMware technology in the SDDC is responsible for software‑defined storage? A) vSphere B) NSX‑T C) vSAN D) vRealize Operations Answer: C Explanation: vSAN aggregates local disks on ESXi hosts to create a shared, software‑defined datastore. Question 5. Which AWS networking construct isolates the SDDC’s compute traffic from management traffic? A) Security Group B) Elastic Load Balancer C) Two separate subnets: Management and Compute D) NAT Gateway Answer: C Explanation: The SDDC uses distinct VPC subnets for the Management Network and the Compute Network to separate traffic. Question 6. What is an Elastic Network Interface (ENI) used for in VMware Cloud on AWS? A) To store VM snapshots in S
Question 9. Which disaster‑recovery use case is most appropriate for a secondary SDDC in a different AWS region? A) Backup of individual VM files to S B) Warm standby with asynchronous replication of workloads C) Live migration of VMs across regions without downtime D) Storing VM logs in CloudWatch Answer: B Explanation: A warm standby SDDC replicates workloads asynchronously, allowing rapid failover to a different region in case of a disaster. Question 10. Before deploying an SDDC, which prerequisite must be satisfied in the AWS account? A) Enable AWS Shield Advanced B) Link the AWS account to the VMware Cloud on AWS organization C) Create an Amazon Aurora database D) Deploy a Lambda function for monitoring Answer: B Explanation: The AWS account must be linked to the VMware Cloud on AWS organization to allow provisioning of resources. Question 11. During SDDC deployment, what determines the amount of vCPU, memory, and storage available to workloads? A) The selected host size (e.g., i3.metal, i3en.metal) B) The number of IAM users C) The AWS region’s latency
D) The size of the VPC CIDR block Answer: A Explanation: Host size defines the underlying hardware resources (CPU, RAM, local SSD) that vSAN and ESXi expose to VMs. Question 12. Which component of the VMware Cloud Console provides a graphical view of the SDDC’s health and resource usage? A) SDDC Dashboard B) AWS CloudFormation Designer C) vRealize Log Insight D) AWS Cost Explorer Answer: A Explanation: The SDDC Dashboard within the VMware Cloud Console shows health, capacity, and performance metrics. Question 13. What role does the CloudAdmin user have in a VMware Cloud on AWS SDDC? A) Full AWS account administration rights B. Unlimited access to all VMware Cloud on AWS services, including patching and upgrades C) Restricted privileges limited to managing VMs and networking within the SDDC D) Ability to modify the AWS VPC routing tables Answer: C Explanation: CloudAdmin is a limited‑privilege role that can manage resources inside the SDDC but does not have full AWS or VMware service control. Question 14. Hybrid Linked Mode (HLM) enables which of the following capabilities? A) Direct connection of SDDC hosts to on‑premises storage arrays
Question 17. Which action creates a point‑in‑time copy of a virtual machine’s disk and memory state? A) Clone B) Snapshot C) Template conversion D) vMotion Answer: B Explanation: A snapshot captures the VM’s current disk and memory state, allowing rollback to that point later. Question 18. Which migration method moves a powered‑on VM across the network without downtime? A) Cold migration B) vMotion C) Storage vMotion only D) HCX Bulk Migration Answer: B Explanation: vMotion migrates a running VM’s compute and memory state live, resulting in zero downtime. Question 19. HCX is primarily used for which purpose in VMware Cloud on AWS? A) Automating backup to S B) Extending on‑premises vCenter to the cloud for large‑scale migration and disaster recovery C) Managing AWS IAM policies D) Providing firewall services for the VPC Answer: B
Explanation: HCX (Hybrid Cloud Extension) enables large‑scale workload migration, stretch clusters, and DR between on‑premises and VMware Cloud on AWS. Question 20. When adjusting a VM’s CPU allocation, which of the following should you modify? A) vCPU count in the VM hardware settings B) Number of ESXi hosts in the cluster C) vSAN cache size D) AWS VPC CIDR block Answer: A Explanation: Changing the vCPU count directly alters the number of virtual CPUs assigned to the VM. Question 21. In VMware resource management, what does a “share” define? A) Absolute limit of CPU usage B) Relative priority of a resource pool or VM when contention occurs C) Minimum guaranteed memory for a VM D) Maximum number of snapshots allowed Answer: B Explanation: Shares determine the proportion of resources a VM or resource pool receives relative to others during contention. Question 22. Which tool in the VMware Cloud Console can be used to view recent alerts, tasks, and events for an SDDC? A) Event Viewer B) Cloud Health Dashboard
A) Distributed Firewall (DFW) B) Edge Firewall C) Security Group D) Load Balancer Answer: A Explanation: The Distributed Firewall runs on each ESXi host, providing stateful inspection and micro‑segmentation at the VM level. Question 26. To allow inbound traffic from the internet to a web server VM, which NSX‑T element must be configured? A) Logical Switch only B) Distributed Firewall rule permitting north‑south traffic C) vSAN datastore policy D) vCenter Server alarm Answer: B Explanation: An inbound (north‑south) firewall rule must be created to permit traffic from external sources to the VM. Question 27. In the shared responsibility model for VMware Cloud on AWS, who is responsible for patching the ESXi hypervisor? A) The customer (VMware Cloud on AWS user) B) VMware (service provider) c) AWS (infrastructure provider) d) Both VMware and AWS jointly Answer: B
Explanation: VMware manages and patches the ESXi hypervisor as part of the SDDC service; the customer does not patch the host OS. Question 28. Where can you find the current SDDC software version? A) In the AWS Management Console under EC2 → Instances B) In the VMware Cloud Console SDDC Details page c) In the vCenter Server “About” dialog d) Both B and C Answer: D Explanation: The version is displayed both on the VMware Cloud Console’s SDDC Details page and within vCenter’s “About” information. Question 29. Which of the following best describes Role‑Based Access Control (RBAC) in VMware Cloud on AWS? A) Assigning IAM policies to AWS users only B) Defining permissions based on user roles such as CloudAdmin, Read‑Only, etc. c) Using security groups to control network traffic d) Granting full root access to all users by default Answer: B Explanation: RBAC assigns specific privileges to users based on predefined roles, controlling what actions they can perform within the SDDC. Question 30. The Organization Owner in the VMware Cloud Console primarily has which responsibility? A) Managing AWS billing for the entire account B) Creating and managing SDDC clusters only
Question 33. What is a primary method for cost optimization in VMware Cloud on AWS? A) Increasing vSAN cache size b) Right‑sizing host types and reducing unused hosts with Elastic DRS c) Enabling AWS GuardDuty d) Adding more security groups Answer: B Explanation: Right‑sizing the host type and using Elastic DRS to remove idle hosts reduces compute spend, optimizing cost. Question 34. If a customer experiences a networking issue inside the SDDC, which support channel should they contact first? A) VMware Support (for SDDC networking) b) AWS Support (for VPC routing) c) Both simultaneously d) Their internal IT help desk Answer: A Explanation: VMware is responsible for the SDDC’s internal networking (NSX‑T, vSAN), so VMware Support should be contacted first. Question 35. Which VMware documentation resource provides step‑by‑step guides for common operational tasks? A) VMware Knowledge Base (KB) articles b) AWS Well‑Architected Framework c) vRealize Suite Automation docs d) Amazon S3 user guide Answer: A
Explanation: The VMware Knowledge Base contains official articles and procedures for managing the SDDC. Question 36. Which AWS service can be used to extend the on‑premises network to the SDDC via a private connection? A) Amazon CloudFront b) AWS Direct Connect c) AWS Lambda d) Amazon SNS Answer: B Explanation: AWS Direct Connect provides a dedicated private link between on‑premises infrastructure and the AWS VPC hosting the SDDC. Question 37. What is the purpose of a “Compute Network” in the SDDC VPC? A) To host management traffic for vCenter and NSX Manager b) To carry VM traffic between ESXi hosts and external networks c) To store vSAN metadata d) To provide DNS resolution for the SDDC Answer: B Explanation: The Compute Network carries the data plane traffic for VMs, including east‑west traffic between hosts and north‑south traffic to external networks. Question 38. Which of the following statements about vSAN caching is true? A) vSAN does not use caching; it writes directly to SSDs b) vSAN uses the host’s RAM and SSD as a cache tier for read/write acceleration c) vSAN caching is managed by AWS S
A) Tier‑0 Router (T0) b) Distributed Firewall c) Edge Services Gateway (ESG) only d) vCenter Server Answer: A Explanation: The Tier‑0 logical router provides north‑south routing between logical segments and external networks. Question 42. Which of the following is a benefit of enabling HCX “Bulk Migration” for large numbers of VMs? A) Real‑time replication of VM memory b) Parallel transfer of many VMs, reducing total migration time c) Automatic conversion of VMs to containers d) Eliminates the need for VPN or Direct Connect Answer: B Explanation: Bulk Migration moves multiple VMs concurrently, optimizing bandwidth and shortening overall migration duration. Question 43. Which SDDC scaling action is performed automatically by Elastic DRS when CPU utilization exceeds a threshold? A) Adding an additional ESXi host to the cluster b) Increasing vSAN cache size c) Creating a new VPC d) Deploying a new vCenter instance Answer: A
Explanation: Elastic DRS monitors utilization and automatically adds a host when demand exceeds defined thresholds. Question 44. Which of the following describes a “Reservation” in VM resource settings? A) The maximum amount of CPU a VM can ever use b) A guaranteed amount of CPU or memory resources reserved for the VM c) The priority of the VM during contention d) The total number of snapshots allowed Answer: B Explanation: A reservation guarantees that a specified amount of CPU or memory is always available to the VM. Question 45. Which AWS service can be used to securely store VM backup files from the SDDC? A) Amazon S b) Amazon DynamoDB c) Amazon Redshift d) AWS Glue Answer: A Explanation: Amazon S3 provides durable object storage suitable for storing VM backup archives. Question 46. Which VMware Cloud on AWS feature provides a unified view of capacity across all clusters in an SDDC? A) Capacity Planner in vRealize Operations b) SDDC Capacity Dashboard in the VMware Cloud Console
Question 49. In the context of VMware Cloud on AWS, what does “stretch cluster” refer to? A) A vSAN cluster spanning two AWS Availability Zones for HA b) An NSX‑T logical router spanning multiple VPCs c) A vCenter Server instance replicated across regions d) An EC2 Auto Scaling group extending beyond a single subnet Answer: A Explanation: A stretch cluster is a vSAN configuration that spans two AZs, providing fault tolerance across zones. Question 50. Which of the following statements about vCenter Server High Availability (vCenter HA) in VMware Cloud on AWS is correct? A) vCenter HA is not supported; a single vCenter instance runs per SDDC b) vCenter HA is automatically enabled and provides active‑passive redundancy c) Customers must manually configure vCenter HA using additional VMs d) vCenter HA is replaced by AWS Elastic Load Balancing Answer: B Explanation: VMware Cloud on AWS automatically deploys vCenter HA, delivering active‑passive redundancy for the management plane. Question 51. What is the purpose of an “NSX‑T Edge Services Gateway (ESG)”? A) To provide distributed firewall capabilities on each host b) To enable north‑south services such as NAT, VPN, and load balancing c) To store vSAN metadata d) To manage vCenter Server licensing Answer: B
Explanation: The ESG delivers north‑south network services like NAT, VPN, and load balancing for traffic entering or leaving the SDDC. Question 52. Which of the following is a valid way to increase VM storage capacity in a vSAN‑backed SDDC? A) Adding more EC2 instances to the VPC b) Expanding the vSAN datastore by adding capacity to the cluster (e.g., adding hosts) c) Increasing the size of the AWS IAM role d) Modifying the VPC CIDR block Answer: B Explanation: vSAN capacity grows when additional ESXi hosts (with local disks) are added to the cluster, expanding the shared datastore. Question 53. Which AWS pricing model would you choose to achieve the lowest cost for a predictable, long‑term workload on VMware Cloud on AWS? A) On‑Demand b) Spot Instances c) Reserved Instances with a 3‑year term d) Savings Plans for compute‑only workloads Answer: C Explanation: Reserved Instances with a 3‑year commitment provide the deepest discount for predictable, long‑term usage. Question 54. In the VMware Cloud Console, where can you schedule a maintenance window for patching the SDDC? A) Under “Maintenance & Updates” in the SDDC settings b) In the AWS Systems Manager Patch Manager