更新时间:2021-08-13 15:47:18
封面
Title Page
Copyright and Credits
Data Center Virtualization Certification: VCP6.5-DCV Exam Guide
Packt Upsell
Why subscribe?
PacktPub.com
Contributors
About the authors
About the reviewer
Packt is searching for authors like you
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Reviews
Configuring and Administering vSphere 6.x Security
Objective 1.1 – Configure and administer role-based access control
Compare and contrast propagated and explicit permission assignments
View/sort/export user and group lists
Add/modify/remove permissions for users and groups on vCenter Server inventory objects
Determine how permissions are applied and inherited in vCenter Server
Create/clone/edit vCenter Server Roles
Configure VMware Identity Sources
Apply a role to a user/group and to an object or group of objects
Change permission validation settings
Determine the appropriate set of privileges for common tasks in vCenter Server
Compare and contrast default system/sample roles
Determine the correct permissions needed to integrate vCenter Server with other VMware products
Objective 1.2 – Secure ESXi and vCenter Server 2
Configure encrypted vMotion
Describe ESXi Secure Boot
Harden ESXi hosts
Enable/configure/disable services in the ESXi firewall
Change ESXi default account access
Add an ESXi Host to a directory service
Apply permissions to ESXi Hosts using Host Profiles
Enable Lockdown Mode
Control access to hosts (DCUI/Shell/SSH/MOB)
Harden vCenter Server
Control datastore browser access
Create/Manage vCenter Server Security Certificates
Control MOB access
Change vCenter default account access
Restrict administrative privileges
Understand the implications of securing a vSphere environment
Objective 1.3 – Configure and Enable SSO and Identity Sources
Describe PSC architecture and components
Differentiate available authentication methods with VMware vCenter
Perform a multi-site PSC installation
Configure/manage identity sources
Configure/manage platform services controller (PSC)
Configure/manage VMware Certificate Authority (VMCA)
Enable/disable SSO users
Upgrade a single/complex PSC installation
Configure SSO policies
Add an ESXi host to an AD domain
Configure and manage KMS for VM encryption
Objective 1.4 – Secure vSphere Virtual Machines
Enable/disable VM encryption
Describe VM Secure Boot
Harden virtual machine access
Control VMware Tools installation
Control VM data access
Configure virtual machine security policies
Harden a virtual machine against DoS attacks
Control VM-VM communications
Control VM device connections
Configure network security policies
Configure VM encrypted vMotion
What is missing
Review questions
Summary
Configure and Administer vSphere 6.x Networking
Objective 2.1 – Configure policies/features and verify vSphere networking
Creating/deleting a vSphere Distributed Switch
Adding/removing ESXi hosts from a vSphere Distributed Switch
Adding/configuring/removing dvPort groups
Adding/removing uplink adapters to dvUplink groups
Configuring vSphere Distributed Switch general and dvPort group settings
Creating/configuring/removing virtual adapters
Migrating virtual machines to/from a vSphere Distributed Switch
Configuring LACP on vDS given design parameters
Describing vDS Security policies/settings
Configuring dvPort group blocking policies
Configuring load balancing and failover policies
Configuring VLAN/PVLAN settings for VMs given communication requirements
Configuring traffic shaping policies
Enabling TCP Segmentation Offload support for a virtual machine
Enabling jumbo frames support on appropriate components
Recognizing the behavior of vDS auto-rollback
Configuring vDS across multiple vCenters to support Long Distance vMotion
Comparing and contrasting vSphere Distributed Switch capabilities
Configuring multiple VMkernel Default Gateways
Configuring ERSPAN
Creating and configure custom TCP/IP Stacks
Configuring Netflow
