Valid NCP-CI-AWS Dumps shared by ExamDiscuss.com for Helping Passing NCP-CI-AWS Exam! ExamDiscuss.com now offer the newest NCP-CI-AWS exam dumps, the ExamDiscuss.com NCP-CI-AWS exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com NCP-CI-AWS dumps with Test Engine here:
An administrator is creating and destroying multiple clusters daily for a test/dev environment. The administrator wants ensure that every NC2 on AWS cluster deployed will allow full access from the on-premises CVM subnet. What is most-efficient way to achive this?
Correct Answer: C
D/ Create a Custom AWS Network Security Group using a key of tag:nutanix: clusters:external:cluster-uuid and set the value of the UUID for each deployed cluster. Set the inbound allow address of the on-premises subnet. Explanation: To ensure that every NC2 on AWS cluster deployed allows full access from the on-premises CVM subnet efficiently, the administrator should create a custom AWS Network Security Group. Use a key value of tag:nutanix:clusters:external for the security group, and set the inbound allow address to the on-premises subnet. This approach leverages AWS tags to manage security group rules dynamically and ensures that the necessary access permissions are applied automatically to all clusters with the specified tag. This method reduces the need for manual configuration of each cluster's security group, streamlining the process for a test/dev environment where clusters are frequently created and destroyed. Reference: Refer to the AWS documentation on Network Security Groups and Nutanix documentation on best practices for securing NC2 clusters.
