In a cloud design, an architect has defined a separate trust zone for host management. The hosts will be running open source hypervisors. What should be included in the design deliverables to support this separate trust zone?
A.
Federated authentication source and preferred QoS network settings
B.
Isolated management network and a federated super-user account
C.
Separate PKI and encrypted CMP portal access
D.
Separate PKI and a separate authentication source
Consider using a separate Public Key Infrastructure (PKI) for each trust zone. Having a separate, internal PKI for all administrative interfaces adds an extra layer of protection since only certificates using the internal authority would be trusted. Deploying a separate, internal authentication service with limited accounts and strong username/password combinations helps secure connections to administrative interfaces as well. Correct D
upvoted 4 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
JBONINO
3 years, 8 months ago