August//2021 Latest Braindump2go CV0-002 Exam Dumps with PDF and VCE Free Updated Today! Following are some new CV0-002 Real Exam Questions!
QUESTION 538
A CSA needs to migrate 200TB of on-premises SAN data to a private cloud located in the same region. Which of the following should the CSA analyze? (Choose two.)
A. VPN restrictions
B. DNS settings
C. Network bandwidth
D. SSO settings
E. Maintenance windows
F. Legal restrictions
Answer: CE
QUESTION 539
A cloud administrator wants to make a web application on the company’s private cloud available to multiple remote sites. Which of the following protocols BEST provides IP packet encapsulation?
A. L2TP
B. GRE
C. PPTP
D. SIP
Answer: B
QUESTION 540
A company is migrating a website to a CSP to improve availability and performance. After testing the application, the systems engineer realizes the website stores the session state in a database system. Which of the following is the BEST way to ensure a successful migration?
A. Configure the new website to use the database system.
B. Migrate to a DBaaS and keep the session state.
C. Implement a new database system to store the session state.
D. Deploy a load balancer to store the session state.
Answer: A
QUESTION 541
The administrator at a SaaS provider wants to improve security of the systems hosting the SaaS application. The administrator has created a script that monitors malware research sites and automatically creates and uploads signatures when new vulnerabilities are announced. To which of the following security services is the script MOST likely to upload these signatures?
A. Proxy
B. VPN
C. Firewall
D. IDP
Answer: D
Explanation:
https://www.juniper.net/documentation/us/en/software/junos/idp-policy/topics/topic-map/ security-idp-signature-database.html
QUESTION 542
A new company policy requires all data stored in a private cloud to be encrypted at rest. Which of the following is the MOST efficient way to achieve this requirement with the least performance impact?
A. Enable encryption of the file systems in VM templates.
B. Enable encryption on the hypervisor side.
C. Enable encryption on storage arrays.
D. Enable encryption using the host’s TPM.
Answer: C
QUESTION 543
A communications service operator is planning to start migrating its complex network infrastructure to cloud by NFV, including a pool of media gateway servers, routers, and firewalls. The network elements consist of two controller cards, two redundant drives, and redundant ASIC boards. Which of the following virtualization requirements outlines the correct deployment plan?
A. The deployment and implementation should be on public cloud space with network elements shared across different functions with central database/storage.
B. The deployment and implementation should be on hosted private cloud space with a VM for each controller card, ASIC board, and storage mapped to existing databases.
C. The deployment and implementation should be done in a hybrid model with VMs for controller cards and storage hosted in a private cloud; any functional cards are in a public cloud.
D. The deployment and implementation should be done using SaaS; only configuration of database storage needs to be considered during deployment.
Answer: A
QUESTION 544
The access control department creates a process to grant elevated administrator privileges for only a certain amount of time for a specific administrator task in an IaaS-hosted VM resource. Which of the following access control method is used?
A. SSO
B. Policy-based
C. Two-factor authentication
D. RBAC
Answer: B
QUESTION 545
A CSA needs to apply new OS security patches to the application cluster server farm in a public cloud provider. The CSA wants to ensure the security patch and configuration are consistent for all members of the server farm. Which of the following deployment practices is the BEST approach to do this?
A. Update and validate the runbook procedures prior to the patch rollout.
B. Leverage the infrastructure as code and replace each server farm member.
C. Configure and patch each server individually and take an OS differential backup.
D. Snapshot all existing server farm members before installing the patch.
Answer: D
QUESTION 546
A cloud administrator is building a company’s payment system in the public cloud.
Which of the following security standards is the cloud administrator MOST likely to apply to comply with industry standards?
A. PKI
B. PCI
C. PII
D. PSK
Answer: B
Explanation:
https://www.pcicomplianceguide.org/faq/
QUESTION 547
A technician uses a workflow to create new virtual servers in a private cloud. The workflow reports that the process was successful, but the virtual servers do not appear in the cloud dashboard.
Which of the following is the MOST likely reason the servers were not created?
A. Job validation issue
B. Location changes
C. Version feature mismatch
D. Bandwidth limitations
Answer: A
QUESTION 548
Several of an organization’s mobile applications are hosted in a cloud environment, and the risk team requires cross-site scripting protection to ensure availability.
Which of the following is the MOST efficient security tool to implement?
A. IPSec
B. WAF
C. VPN
D. HIPS
Answer: B
Explanation:
A web application firewall or WAF helps protect a web application against malicious HTTP traffic. By placing a filtration barrier between the targeted server and the attacker, the WAF is able to protect against attacks like cross site forgery, cross site scripting and SQL injection
QUESTION 549
A cloud administrator has implemented a cost-savings policy to reduce the number of servers running at a given time. This policy will shut down all servers at 3:30 a.m. and restart them at 8:30 a.m. every morning. The management team has recently communicated that the daily reports are no longer available for the 9:00 a.m. meeting.
Which of the following would be BEST for the administrator to implement?
A. Add more resources to reduce the duration for the batch jobs.
B. Change the shutdown policy to begin at 4:00 a.m.
C. Reschedule the financial_summary batch job to run at 9:00 a.m.
D. Disable the policy to shut down and restart the servers.
Answer: B
QUESTION 550
A cloud administrator is managing a VPC within an IaaS service model and needs to install quarterly updates.
Which of the following cloud components should the administrator update? (Choose three.)
A. Network switches
B. Hypervisor
C. Storage array
D. Storage switches
E. Operating system
F. Application
G. Antivirus
H. Load balancer
Answer: BEG
QUESTION 551
The end users of a SaaS application use multiple services from the same application. A unique login ID and password are required for each user to access each service.
Which of the following access control methods should be implemented by the SaaS application vendor to simplify the access to its services?
A. RBAC
B. SAML
C. SSO
D. MFA
Answer: B
Explanation:
https://www.varonis.com/blog/what-is-saml/
QUESTION 552
After load testing on the QA environment, which showed good performance results with 10,000 users, the new version was installed in the production environment. However, users are reporting performance issues, and there are only 7,000 users currently utilizing the application. The configuration of each environment is shown in the table below.
Which of the following is the MOST likely cause of differing performance in the QA and PROD environments?
A. The load testing does not cover all user scenarios.
B. Synchronous replication is slowing down production.
C. More RAM needs to be configured for the QA VMs to match PROD.
D. The QA environment should have been tested with 7000 users.
Answer: A
QUESTION 553
A consumer is performing a comparison between different IaaS providers for upcoming cloud migrations.
Which of the following is the MOST appropriate option to make a comparison for the selection process?
A. Hardware technology used
B. Virtualization platform
C. Backup services
D. SLA offerings
Answer: D
QUESTION 554
A performance test team recently completed a simulated load test on a new e-commerce application hosted in the public cloud environment. The test was a 50% load test and produced the following results:
Based on these results, which of the following is the BEST recommendation to ensure the environment can handle a full load?
A. Reduce the CPU and memory for DB01 to save cost.
B. Perform no changes. The environment is sized correctly.
C. Add three MW servers to handle the 50% increase.
D. Resize the WEB01 server to double the memory.
Answer: C
QUESTION 555
A company decided to move an event-driven application, which processes complex data, to the public cloud. The current datacenter is becoming expensive to maintain because the application only runs when an event occurs and is idle most of the time. The scale and complexity of the events vary.
Which of the following is the MOST optimal solution?
A. Mainframe compute environment
B. Dedicated compute environment
C. Serverless compute environment
D. High-performance compute environment
Answer: C
QUESTION 556
During troubleshooting of a performance problem with an all-flash array that is used to store the primary production data of multiple virtualization clusters in a private cloud, the storage vendor wants to perform an upgrade of the array firmware.
Which of the following should be done NEXT?
A. Open a change request and ask for approval.
B. Establish a plan of action and implement it.
C. Download the array firmware and apply it on the affected array.
D. Document the findings.
Answer: B
QUESTION 557
A cloud engineer is provisioning a group of servers in a public cloud using a template. The template uses a custom image that includes all the hardening minimum security standards approved by the cybersecurity department. The image is more than 30 days old and is updated on a quarterly basis.
Before deploying the servers in production, the cloud engineer should:
A. ensure the servers are fully patched.
B. enable all unneeded ports.
C. enable NAT to the servers.
D. apply server patches to the template.
Answer: C
QUESTION 558
A cloud engineer was recently hired at a company. The IT manager has tasked the cloud engineer to perform server maintenance in its public cloud. The cloud engineer is unaware of the process to perform the routine maintenance.
Which of the following should the technician do FIRST?
A. Request training.
B. Refer to previous documentation.
C. Perform updates in the test environment.
D. Refer to the SOP.
Answer: C
QUESTION 559
A cloud administrator is moving a healthcare application to the public cloud. The application needs to be secured while data is being stored.
Which of the following technologies should be deployed to BEST meet the requirements?
A. Self-encrypting drives
B. Data masking
C. Deduplication
D. Data compression
Answer: D
QUESTION 560
A cloud administrator is troubleshooting SSO issues with an application server. The application server sits behind a load balancer device with WAF and reverse proxy services enabled.
Which of the following authentication types should the administrator ensure is disabled to allow SSO functions?
A. Anonymous
B. Multifactor
C. Kerberos
D. Basic
Answer: B
Resources From:
1.2021 Latest Braindump2go CV0-002 Exam Dumps (PDF & VCE) Free Share:
https://www.braindump2go.com/cv0-002.html
2.2021 Latest Braindump2go CV0-002 PDF and CV0-002 VCE Dumps Free Share:
https://drive.google.com/drive/folders/1nkSLijcSM4wNEm6YJKhCl9QqrK8Ynfi7?usp=sharing
3.2021 Free Braindump2go CV0-002 Exam Questions Download:
https://www.braindump2go.com/free-online-pdf/CV0-002-PDF-Dumps(562-584).pdf
https://www.braindump2go.com/free-online-pdf/CV0-002-VCE-Dumps(538-561).pdf
Free Resources from Braindump2go,We Devoted to Helping You 100% Pass All Exams!