http://https://www.newpassleader.com/EMC/E20-020-exam-preparation-materials.html (70 Q&As Dumps, 30%OFF Special Discount: 30free )

NEW QUESTION NO: 8
An organization uses Microsoft Active Directory (AD) for service authentication in their private cloud. They want to use the same authentication source for services in the public cloud. External employees access services in both clouds and need to authenticate with AD.
The organization wants to minimize and secure network traffic. Which solution will address these requirements?
A. Connect the two clouds through IPsec VPN
Place AD controllers in the private cloud only
B. Connect the two clouds through IPsec VPN
Place AD controllers in the private and public clouds
C. Configure perimeter firewalls to allow AD traffic
Place AD controllers in the private and public clouds
D. External users connect with IPsec VPN
Place AD controllers in the private cloud only
Answer: B
Explanation/Reference:
References:
https://blogs.technet.microsoft.com/keithmayer/2013/01/20/step-by-step-extending-on-premise-active- directory-to-the-cloud-with-windows-azure-31-days-of-servers-in-the-cloud-part-20-of-31/

NEW QUESTION NO: 9
An organization wants to provide its developers with the ability to deploy virtual machines. These virtual machines have software and libraries installed that are used to develop applications. Each virtual machine will be configured with the same IP address and will be able to download application code from a central server.
Which will be included in the design to support these requirements?
A. VSANs and virtual firewall appliances
B. VLANs and virtual firewall appliances
C. VLANs and virtual IDS appliances
D. VXLANs and an OS firewall
Answer: D
Explanation/Reference:
Virtual Extensible LAN (VXLAN) is a proposed encapsulation protocol for running an overlay network on existing Layer 3 infrastructure. An overlay network is a virtual network that is built on top of existing network Layer 2 and Layer 3 technologies to support elastic compute architectures. VXLAN will make it easier for network engineers to scale out a cloud computing environment while logically isolating cloud apps and tenants.
References:
http://whatis.techtarget.com/definition/VXLAN

NEW QUESTION NO: 10
What describes the storage categories represented by OpenStack Swift and EMC XtremIO requirements?
A. Swift = Distributed Object Storage
XtremIO = Central Storage
B. Swift = Central Storage
XtremIO = Distributed File Storage
C. Swift = Distributed Block Storage
XtremIO = Distributed Object Storage
D. Swift = Distributed File Storage
XtremIO = Distributed Block Storage
Answer: A
Explanation/Reference:
OpenStack Swift is a globally-distributed object storage with a single namespace that's durable enough for the most demanding private clouds and now brought to you in an easy-to-deploy/scale/manage system.
XtremIO is a flash-based Storage Array.
References:
https://www.swiftstack.com/#testimonial/2
http://www.emc.com/collateral/white-papers/h11752-intro-to-XtremIO-array-wp.pdf

NEW QUESTION NO: 11
An organization plans to deploy many cloud-native applications that will generate a considerable amount of east-west traffic. The cloud-native applications will be deployed on hosts running hyppervisors.
Why would distributed routers be considered in this design?
A. Enable network segment
B. Improve network performance between hosts
C. Minimize Internet traffic
D. Protect against a physical router failure
Answer: B
Explanation/Reference:
Distributed Virtual Router (DVR) aims to isolate the failure domain of the traditional network node and to optimize network traffic by eliminating the centralized L3 agent. It does that by moving most of the routing previously performed on the network node to the compute nodes.
* East/west traffic (Traffic between different networks in the same tenant, for example between different tiers of your app) previously all went through one of your network nodes whereas with DVR it will bypass the network node, going directly between the compute nodes hosting the VMs.
Etc.
References:
http://assafmuller.com/2015/04/15/distributed-virtual-routing-overview-and-eastwest-routing/

NEW QUESTION NO: 12
An organization wants to build a pilot cloud for developers to learn and practice cloud-native application design. The organization expects that the cloud will host many tiny instances that will use few resources.
What accurately describes the optimal CPU and memory configuration?
A. Moderate CPU core count and high memory capacity
B. High CPU core count and high memory capacity
C. Moderate CPU core count and moderate memory capacity
D. High CPU core count and moderate memory capacity
Answer: C

NEW QUESTION NO: 13
An organization is implementing a backup solution for their private cloud. They are concerned that having the backup data stored onsite will expose them to lose in the event of a site-wide disaster. They are considering replicating the backup storage to an external site.
What are the design considerations involved with this replication solution?
A. Ensuring network traffic encryption is considered and ensuring proper hypervisor support
B. Ensuring sufficient network bandwidth is available and network traffic encryption is considered
C. Ensuring proper hypervisor support and sufficient network bandwidth is available
D. Ensuring proper hypervisor support and the availability of a federated single sign-on solution
Answer: B

NEW QUESTION NO: 14
What can the consumer manage and control when subscribing to cloud Software as a Service (SaaS)?
A. OS settings
B. Network settings
C. Application settings
D. API module
Answer: C
Explanation/Reference:

NEW QUESTION NO: 15
What is a challenge that is unique to hybrid cloud deployments for authentication and authorization systems?
A. Maintaining administrative user credential security
B. Additional requirements for single sign-on capabilities
C. Additional costs of scaling authentication server management
D. Maintaining authentication availability during an inter-cloud link outage
Answer: B
Explanation/Reference:
Single Sign On
The advantage of having a single point of control over users' access to any organizational assets should be clear.
Extending centralized authentication policy to cloud resources provides not only continuity of control but also maximizes user convenience so that the user need not provide different credentials based on the location of the resource. This will be particularly important as resources migrate to the cloud over time.
References:
https://technet.microsoft.com/en-us/magazine/hh389788.aspx

NEW QUESTION NO: 16
During the assessment phase of the design process, the cloud architect discovers that an organization wants to provide consumers with the ability to backup and restore entire virtual machines. Which backup application functionality will support this requirement?
A. Image-based backups
B. Cloud gateway backups
C. Array-based snapshots
D. Agent-based backups
Answer: A

NEW QUESTION NO: 17
An organization wants to deploy applications that can programmatically alter network behavior. In addition, they want to deploy additional network services in real-time.
Which cloud-management component should be included in the design to support this requirement?
A. Hypervisor Element Manager
B. Software-Defined Network Controller
C. Network Management Controller
D. Virtual Switch Manager
Answer: B
Explanation/Reference:
An SDN controller is an application in software-defined networking (SDN) that manages flow control to enable intelligent networking. SDN controllers are based on protocols, such as OpenFlow, that allow servers to tell switches where to send packets.
In effect, the SDN controller serves as a sort of operating system (OS) for the network. By taking the control plane off the network hardware and running it as software instead, the controller facilitates automated network management and makes it easier to integrate and administer business applications.
References:
http://searchsdn.techtarget.com/definition/SDN-controller-software-defined-networking-controller

NEW QUESTION NO: 18
An organization wants to enable consumers to deploy IaaS and PaaS instances from a service catalog.
These instances will all be deployed on a specific hypervisor. The organization has informed you that they want to use a preferred server vendor when building their new private cloud.
What must be confirmed about the design?
A. Server hardware is compatible with PaaS solution
B. Server hardware is on the hypervisor vendor's compatibility list
C. Server hardware is supported by the service catalog solution
D. IaaS instances have the compatible drivers for the physical server hardware
Answer: B