To study for VMware HCI Master Specialist Exam | vSAN认证考试题目学习
98. During a designworkshop, the customer has security concerns about the vSAN data transfer between the vSAN nodes. Which setting should the architect recommend enabling on the vSAN cluster to address this requirement?
- A.Data-at-rest encryption
- B.TRIM/UNMAP
- C.Data-in-transit encryption
- D.KMS Cluster
Explaination:
To address the customer’s security concerns about the data transfer between vSAN nodes, the architect should recommend enabling C. Data-in-transit encryption on the vSAN cluster.
Data-in-transit encryption is specifically designed to protect data as it moves between nodes in a network, ensuring that any data transferred within the vSAN cluster is encrypted and therefore protected from interception or eavesdropping by unauthorized parties. This feature encrypts the data as it moves across the network from one vSAN node to another, enhancing the security of the data during its transfer.
为了解决客户对 vSAN 节点间数据传输的安全担忧,架构师应推荐在 vSAN 集群上启用 C. 数据传输加密。
数据传输加密专门设计用于保护网络中节点之间移动的数据,确保在 vSAN 集群内传输的任何数据都被加密,因此能够防止未经授权的第三方截取或窃听。此功能在数据从一个 vSAN 节点移动到另一个节点的过程中对数据进行加密,增强了数据传输过程中的安全性。
