Block 3

Question 1

Describe components of the UCS that runs UCSM software

Answer 1

UCSM is installed on the flex pods fabric interconnects which runs the UCSM software

Question 2

Explain characteristics of the UCS manager administration area

Answer 2

Admin area. The admin area contains systemwide settings and troubleshooting. Components major notes include:
Faults, events and audit logs
User management
Key management
Communication manangement
Stats management
Time zone management
Capability catalog
License management
Device connector

Question 3

Identify the type of port that handles data traffic between the UCS fabric interconnect, and the adapter cards on the blades

Answer 3

Server ports handle all data traffic between the UCS fabric interconnects, and the adapter cards on the blade servers

Question 4

Explain the term media access control pool

Answer 4

A Mac pool is a collection of network identities. Mack pools are assigned to vNic templates.

Question 5

Explain the term worldwide name, pool

Answer 5

A worldwide name pool is a collection of worldwide names used by fiber channel vHBA in a Cisco UCS instance

Question 6

Describe universally, unique identifier pools

Answer 6

A UUID is a 128 bit number that uniquely identifies components worldwide typically manage within UCSM using a UUIID pool

Question 7

Explain the term service profile

Answer 7

A service profile is a software definition of a server and it’s LAN and SAN network connectivity

Question 8

Locate the UCS blade system event log

Answer 8

A blades, SEL resides on the blades CIMC in non-volatile memory

Question 9

Explain the purpose of selecting the preserve identities option for the logical configuration and all configuration back ups

Answer 9

Always select a preserve identities feature when capturing the logical, system, and all configuration backups. This forces back up utility to preserve all data derived from pools. This is critical as without preserved identities the blades will not boot or reboot.

Question 10

Identify the software used to manage net app storage systems

Answer 10

Also known as data ONTAP, this software is used to manage net App Store systems and provides the capability to read and write data over block or file access protocols

Question 11

Explain the difference between a SAN and a NAS

Answer 11

NAS-provides file access to the storage system

SAN-provides block level access to the storage system via FC, FCOE, or Internet small computer system interface protocols

Question 12

Describe an aggregate

Answer 12

An aggregate is a container for the disk manage by a node and is a collection of one or two plexus , depending on whether or not the system admin wants to take advantage of raid level mirroring

Question 13

Describe a storage virtual machine

Answer 13

A storage virtual machine is a logical entity used to abstract physical resources

Question 14

Explain the own command system manager interface

Answer 14

The own command system manager GUI is the primary method for managing the storage system, but the CLI also provides administrators command line options for administration

Question 15

Describe the net app volume level encryption technology

Answer 15

The net app volume encryption feature provides software based volume encryption. NVE is a net app software based encryption technology for encrypting a volumes data at rest once encrypted and encryption key is accessible only to the storage system in order to ensure that the underlying data cannot be read, repurposed or stolen.

Question 16

Identified the agent handler

Answer 16

Agent handlers (resides on the server) reduce the workload of the server by offloading event processing and McAfee agent connectivity duties. Agent handlers are most effective when located on the same network segment as the EPO database

Question 17

Describe automatic response

Answer 17

Automatic responses are configured to notify administrators and perform task automation when an event occurs. Once configure, response rules are associated with a group that contains affected systems.

Question 18

Describe the system tree

Answer 18

The system tree is a hierarchal structure that organizes the system in the network into groups and sub groups. The grouping of the systems allows policies to be applied to the groups instead of individual systems.

Question 19

Identify an inactive agent

Answer 19

Periodically, each clients agent checks in with the EPO server periodically. By default, this happens every 60 minutes. In the event that an agent becomes unable to communicate with the EPO server for an extended period of time, the system cannot receive important policy and or virus definition changes.

Question 20

Identify the role of the Acom relative to the army C2IS

Answer 20

The Acom maintains the necessary TBMCS interfaces, sets, appropriate software permissions, configures AOC servers and manages the connectivity supporting the Army C2IS to TBMCS interoperability

Question 21

Identified the army C2IS system that passes air support request to TBMCS

Answer 21

Digital ASRs are submitted by army units via AFATDS

Question 22

Identify the TBMCS system that the Army C2IS is dependent on for exchange of US Army airspace request and air control order air tasking order data

Answer 22

Army C2IS systems are dependent on TBMCS exchange server IRIS for SMTP male exchange of airspace request, and ACO/ATO data between TAIS and TBMCS for US Army airspace and Mission essential needs

Question 23

Explain the purpose of ACAS

Answer 23

The purpose of ACAS is to enumerate platforms, software flaws, and improper system configurations

Question 24

Describe ACAS operating system requirements

Answer 24

ACAS accreditation requires that the components run on 64 bit versions of red hat, enterprise Lennox seven or eight, or windows. Tenable.sc is installed on red hat only 64 bit and not windows.

Question 25

Describe two types of ACAS scans

Answer 25

Two types of tenable scans are *discovery and *assessment.

Discovery scans are used to get an accurate picture of the assets on the network and assessment scans reveal the vulnerabilities associated with those assets

Question 26

Associate differences between user roles

Answer 26

Administrator- this role manages tenable.C and is used to install and configure each organization

Security manager-this is the default account created when a new organization is created. It is used to launch scans, configure users, establish vulnerability policies, and configure other objects that belong to their organization. This account has complete access to all data collected by the organization.

No role- an account with no permissions

Custom role-created by enabling or disabling individual permissions

Question 27

Explain when an ACAS assessment scan is configured

Answer 27

Scans may be configured to display results within an interactive dashboard. The type of scan performed in the type of data collected, determine the information displayed on the dashboard.

Question 28

Identify the two primary documents used for back up and recovery in an AOC

Answer 28

There are two governing documents that address back up and recovery the TBMCS SAM SUM, and the AOC WS back up and recovery guide.

Question 29

Describe the mission essential system list

Answer 29

Mission essential systems are documented on the MESL which also identifies the lead System admin for each system. The leads identify back up requirements and maintain back up and recovery locks for each system.

Question 30

Describe the application use for Oracle backup and recovery

Answer 30

TBMCS database tools provide three utilities for performing oracle, database backups: off-line backups, export recovery, AODB export/import.

Question 31

Explain the procedure for structure, query language principle database backups

Answer 31

Backing up the SQL involves the creation or scheduling of a maintenance task that backs up core services database schemas. The maintenance task verifies the integrity of each database, performs a full backup of each, then purges the SQL back up folder (Y:\SQLFullBackups) of Files older than one week

Question 32

Describe a delivery group

Answer 32

A delivery group is used to administer which virtual desktops are available for users. A delivery group is a collection of machine selected from one or more machine catalogs. The delivery group specifies which users can use those machines, plus the applications and or desktops available to those users

Question 33

Describe machine catalog

Answer 33

A group of computers or VMs managed as a single entity is called a machine catalog. The VMs in the machine catalog are identically configured.

Question 34

Identify which server the Citrix receiver points to

Answer 34

The citrus receiver is configured to point to a storefront server, externally access start with a web browser that points to a net scaler, which intern connects to the storefront web interface

Question 35

Describe the authentication points available in Xendesktop

Answer 35

Storefront and NetScaler

Question 36

Identify which user group a Citrix delivery group is assigned to in an AOC

Answer 36

A Citrix delivery group is created and then assigned to the Citrix desktop user group

Question 37

Describe the purpose of a Vdisk

Answer 37

Acts as a standardized read only image that is accessible to many users simultaneously via Citrix application server and Citrix provisioning server. This vdisk acts as a hard disk for target device i.e, a Citrix application server.

Question 38

Describe the purpose of concurrent license

Answer 38

A concurrent license is not tied to a specific user, but instead is checked out to a specific computer or device that the person is using, and then is checked back in when the session disconnects

Question 39

Identify the server that provides DHCP services for Citrix

Answer 39

The license server not only provide Citrix license, but also supports DHCP services, which is required for Citrix application servers to boot

Question 40

Explain the preferred citrix connection for internal users

Answer 40

Internal users connect directly to storefront servers via Citrix receiver. This provides the best user experience in functionality.

Question 41

Describe why configuration changes are only made on the primary NetScaler

Answer 41

Configuration changes are made on the primary NetScaler only because changes on the secondary NetScaler cannot be applied to the primary NetScaler.

Question 42

Match the mode of a vdisk assigned to many application servers

Answer 42

A Vdisk set to standard image mode is a read only production level disk image standard image mode allows, mini application servers to boot from the vDisk simultaneously without corruption

Question 43

Match the mode of a vDisk assigned to a single application server

Answer 43

vDisk set to private image mode are assigned to a single application server (app master ) not read only

Question 44

Explain from where the Citrix license administration console is configured

Answer 44

With the latest lockdowns, console access is blocked from the actual server and will have to be configured from an admin client using a web browser with the following address: https://<2012_licnese_host>.{FQDN}:8082

Question 45

Identify how frequently XDC 1/2 should be rebooted

Answer 45

Reboot Weekly

The servers control the farm. Reboot one at a time, but only if the other is functional.