Strict Lockdown Mode has been enabled on an ESXi host.
Which action should an administrator perform to allow ESXi Shell or SSH access for users with administrator privileges?
A.
Grant the users the administrator role and enable the service.
B.
Add the users to Exception Users and enable the service.
C.
No action can be taken, Strict Lockdown Mode prevents direct access.
D.
Add the users to vsphere.local and enable the service.
Explanation:
Explanation/Reference:
C is correct
https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.vcli.getstart.doc/cli_run_local.5.4.html
0
0
ESXi host becomes unavailable unless the ESXi Shell and SSH services are enabled and Exception Users are defined
*https://blogs.vmware.com/vsphere/2015/03/vsphere-6-0-lockdown-modes.html
unless the ESXi Shell and SSH services are enabled and Exception Users are defined
*https://pubs.vmware.com/vsphere-60/topic/com.vmware.vsphere.security.doc/GUID-88B24613-E8F9-40D2-B838-225F5FF480FF.html
DETAIL:
In strict lockdown mode, which is new in vSphere 6.0, the DCUI service is stopped. If the connection to vCenter Server is lost and the vSphere Web Client is no longer available, the ESXi host becomes unavailable unless the ESXi Shell and SSH services are enabled and Exception Users are defined. If you cannot restore the connection to the vCenter Server system, you have to reinstall the host.
0
0
Answer B
0
0
B is correct one
https://blogs.vmware.com/vsphere/2015/03/vsphere-6-0-lockdown-modes.html
0
0
B is correct, tested it out in a lab. you can still ssh. DCUI is locked out, though. With normal lockdown, DCUI is available for exception users.
0
0
This questions is nothing about DCUI or lockdown mode. It is about ESXi shell or SSH access, those services need be enable or running, so A is correct one
0
0
Sorry, to correct the answer in the yesterday’s message: A is not the correct one. after review the information on https://pubs.vmware.com/vsphere-60/index.jsp#com.vmware.vcli.getstart.doc/cli_run_local.5.4.html. B is the correct one.
0
0
Hi!
The newest 2V0-621D dumps are available for free on Google Drive:
https://drive.google.com/open?id=0B-ob6L_QjGLpRDdvZTNjQUdZYUE
1
0
And, the newest 2V0-621 dumps are also free here:
https://doc.co/HmqBTy
Good Luck!!!
0
0
do you have 2V0-620 dumps. if you do then please share ab_cbu@hotmail.com
0
0
What’s more, that new 256Q 2V0-621D Dumps are Available here:
https://1drv.ms/f/s!Aq3EkOX-B1yegRRJoQS3AACGESn-
Best Regards!
0
0
B
In normal lockdown mode the DCUI service is not stopped. If the connection to the vCenter Server system is lost and access through the vSphere Web Client is no longer available, privileged accounts can log in to the ESXi host’s Direct Console Interface and exit lockdown mode. Only the following accounts can access the Direct Console User Interface:
Accounts in the Exception User list for lockdown mode who have administrative privileges on the host. The Exception Users list is meant for service accounts that perform very specific tasks. Adding ESXi administrators to this list defeats the purpose of lockdown mode.
0
0