Last Updated On : 4-Jun-2026
Which VMware Cloud Foundation (VCF) Storage Model can be deployed to scale storage capacity independent of compute and network?
A. vSAN Compute Cluster Storage Model
B. vSAN ESA Storage Model
C. vSAN Capacity Cluster Model
D. vSAN ESA Storage Cluster Model
Explanation:
Why Option B is Correct
The vSAN ESA Storage Cluster Model (also known as vSAN Max) is a disaggregated storage architecture that allows storage capacity to scale independently of compute and network resources . This model uses the vSAN Express Storage Architecture (ESA) to create a dedicated storage cluster separate from compute clusters.
In a traditional hyperconverged infrastructure (HCI) model, compute and storage are tightly coupled on the same hosts—scaling storage requires adding nodes with both CPU and memory, even when only capacity is needed . The ESA Storage Cluster Model decouples this relationship. A dedicated cluster of hosts provides centralized storage services to multiple vSphere clusters, enabling administrators to add storage nodes or disks without adding compute resources, and vice versa . This addresses asymmetric growth scenarios where storage requirements grow faster than compute.
Why Other Options are Incorrect
Option A – vSAN Capacity Cluster Model.
This is not the official VMware storage model name for disaggregated storage. While the concept of a "capacity cluster" may sound similar, the correct VMware terminology for independent scaling is the vSAN ESA Storage Cluster Model .
Option C – vSAN Compute Cluster Storage Model.
This describes the opposite design. In the compute cluster model, storage and compute remain coupled on the same hosts. Scaling storage still requires adding compute capacity, which fails the requirement for independent scaling .
Option D – vSAN ESA Storage Model.
This omits the word "Cluster" and is ambiguous. The ESA (Express Storage Architecture) refers to the underlying storage engine, not the disaggregated deployment model. The full name "vSAN ESA Storage Cluster Model" specifically identifies the cluster-based disaggregated architecture .
References
ExamTopics 2V0-13.25 Discussion – Verified community answer B with explanation that vSAN ESA Storage Cluster Model (vSAN Max) provides disaggregated storage for independent scaling
During an initial design workshop with stakeholders, the architect was provided with an
overview of the current state and other information required to proceed to the design
phase.
The architect has assumed that the solution will need to support high availability for
workloads.
Given the assumption, which statement should the architect document as a risk?
A. The solution supports the separation of management components from production workloads.
B. BGP is the dynamic routing protocol on the physical fabric and cannot be changed.
C. The solution supports a recovery point objective (RPO) of 24 hours for infrastructure components.
D. The entire infrastructure is hosted on a single physical site.
Explanation:
In the VMware Design Methodology (VDM), an assumption is a factor that is considered to be true without proof. The architect has assumed the solution must support high availability (HA). However, high availability is not just a software setting; it is heavily dependent on the physical infrastructure's ability to survive various failure scenarios.
Why other options are incorrect:
Option A:This is a requirement or a standard practice in VCF. Separating management and production workloads is an architectural strength that improves stability; it is not a risk to high availability.
Option B: This is a constraint. A constraint is a design factor that is pre-determined and cannot be changed (e.g., the physical fabric already uses BGP). While it dictates how you design networking, it does not inherently threaten the high availability of the workloads.
Option C: This is an RPO requirement. While an RPO of 24 hours is quite long for modern infrastructure, it defines the data loss tolerance rather than a risk to the active availability of the running systems.
References
VMware Certified Design Expert (VCDX) Workshop Handbook: Definitions of Risks, Assumptions, Constraints, and Requirements (RACR).
VMware Cloud Foundation 9.0 Design Guide: Physical Infrastructure Design and Availability Zone considerations.
An architect is responsible for designing a VMware Cloud Foundation (VCF)-based solution
for a customer. The customer has the following requirement:
• There should be no single points of failure within the solution.
To comply with the customer requirement, the architect has decided to include physical
NIC teaming for all ESX servers in the design.
When documenting this design decision, which consideration should the architect make?
A. Embedded NICs should not be used for NIC teaming.
B. Each NIC team must include NICs from the same physical NIC Card.
C. Each NIC team must include NICs from different physical NIC Cards.
D. Only 10GbE NICs should be used for NIC teaming.
Explanation:
Why Option C is Correct
The customer requires no single points of failure. For NIC teaming, this means the failure of a single physical component must not cause complete network loss for an ESXi host.
If all NICs in a team come from the same physical NIC card, that card becomes a single point of failure. A failure of that one card (due to power loss, firmware crash, or hardware defect) would take down all teamed NICs simultaneously, violating the requirement.
By including NICs from different physical NIC cards, the team remains operational if any single card fails. This provides true redundancy at the hardware level and directly supports the "no single point of failure" requirement.
Why Other Options are Incorrect
Option A. Embedded NICs should not be used for NIC teaming.
Embedded NICs (on the motherboard) can be used for teaming if they are from different physical controllers. However, many embedded NICs share the same physical chipset or bus, which can still create a single point of failure. The primary recommendation is to use PCIe add-on cards from different physical adapters. However, the absolute best practice is to avoid relying solely on embedded NICs when motherboards share a single controller for all ports. Option A is too absolute and does not address the core requirement of physical card diversity as directly as Option C.
Option B. Each NIC team must include NICs from the same physical NIC Card.
This creates a single point of failure. If that one card fails, all paths fail. This directly violates the customer requirement.
Option D. Only 10GbE NICs should be used for NIC teaming.
Link speed (1GbE, 10GbE, 25GbE) is unrelated to redundancy. While 10GbE may be recommended for performance, the customer requirement is about eliminating single points of failure, not bandwidth. Slower NICs can be teamed just as effectively from a redundancy perspective.
References
VMware vSphere Networking Documentation – NIC teaming best practices: "Use physical adapters from different PCIe slots and different controllers for redundancy"
During the design workshop, the customer stated the following requirement:
• The solution will support secure communication.
Which design decision should be included in the logical design for the workload domain?
A. Use a SHA-2 algorithm or higher for signed certificates.
B. Set promiscuous mode port group security policy to reject.
C. Verify all physical components used for the deployments are on the hardware compatibility list.
D. Ensure the host servers have TPM 2.0 hardware.
Explanation:
In a VMware Cloud Foundation (VCF) 9.0 logical design, secure communication is primarily enforced through certificate management. Using a SHA-2 algorithm or higher (such as SHA-256) is a critical design decision for signed certificates to ensure data integrity and prevent Man-in-the-Middle (MITM) attacks. Older algorithms like SHA-1 are considered cryptographically broken and are no longer supported by modern browsers or security standards. By mandating SHA-2 or higher, the architect ensures that all management and workload traffic is encrypted using industry-standard, resilient hashing techniques.
Why other options are incorrect:
Option B: Setting the promiscuous mode policy to "Reject" is a security hardening measure for virtual networking (vSwitch/vDS). While important for security, it is typically classified as a physical or configuration-level hardening task rather than a core logical design decision specifically for "secure communication" protocols.
Option C: Verifying the Hardware Compatibility List (HCL) is a physical design requirement and a prerequisite for stability. It ensures the hardware can run the software but does not directly define the encryption or communication security protocols of the logical workload domain.
Option D: Requiring TPM 2.0 hardware is a physical design decision. While a TPM chip supports secure boot and attestation, it is a hardware-level requirement that enables logical security features (like vSphere Trust Authority or VM encryption), but it is not the logical communication design itself.
References
VMware Cloud Foundation 9.0 Security Guide: Sections on "Certificate Management" and "Secure Hashing Algorithms."
VMware vSphere 8.0/9.0 Security Configuration Guide: Recommendations for SSL/TLS and certificate signing.
As part of the VMware Cloud Foundation (VCF) logical design, the architect has
determined that the VCF Private Cloud will encompass multiple VCF instances contained
within a single VCF Fleet. The architect documented the following requirements when
using VCF Operations:
Monitoring downtime must be minimized.
Alerting downtime must be minimized.
Which design decision supports these requirements?
A. Deploy two VCF Operations instances and configure the Aggregator Management Pack.
B. Deploy VCF Operations using the Simple model with Collector nodes at remote sites.
C. Deploy VCF Operations using the High Availability model with Collector nodes at remote sites.
D. Deploy a single VCF Operations instance across a multi-VCF instance fleet.
Explanation:
This design choice directly addresses the requirements to minimize both monitoring and alerting downtime across a VCF Fleet containing multiple VCF instances.
High Availability Model:
By deploying the VCF Operations analytic engine as a three-node cluster, you eliminate a single point of failure. If one node fails, the cluster continues to operate, preventing an outage of the monitoring and alerting services themselves.
Collector Nodes at Remote Sites: Deploying dedicated collector nodes near each VCF instance ensures that data collection continues efficiently, even if there are network issues affecting the central VCF Operations cluster. These collectors gather data locally and forward it to the central cluster, minimizing the risk of data loss and ensuring alerting remains responsive.
Why Other Options are Incorrect
A. Deploy two VCF Operations instances and configure the Aggregator Management Pack.
This creates two separate monitoring platforms that must be federated. It introduces unnecessary complexity and does not directly minimize downtime for a single monitoring plane across the fleet.
B. Deploy a single VCF Operations instance across a multi-VCF instance fleet.
This is not a standard deployment model. A single VCF Operations instance is expected to manage multiple VCF instances, but this option omits the critical 'HA' and 'remote collectors' configuration, leaving the monitoring system vulnerable to downtime.
D. Deploy VCF Operations using the Simple model with Collector nodes at remote sites.
The Simple model deploys a single node for the analytic engine. It relies solely on vSphere HA to restart the node after a failure, which results in monitoring and alerting downtime during the restart process, failing the requirement
References
Broadcom TechDocs: High Availability VCF Operations Model
Broadcom TechDocs: Simple VCF Operations Model
Discovery: Multiple business units (some from acquisitions) with separate AD instances.
Each unit operates independently and requires dedicated development environments.
Requirement: Provide self-service provisioning through VCF Automation.
Which two design decisions should be included? (Choose two.)
A. All tenants will be configured to use the corporate AD instance for authentication.
B. All tenants will be configured to use their dedicated AD instance for authentication.
C. A VCF Automation tenant will be created for each business unit.
D. A VCF Automation project will be created for each business unit.
E. All projects will be configured to use their dedicated AD instance for authentication.
Explanation:
The customer requires self-service provisioning through VCF Automation with each business unit operating independently and requiring dedicated development environments. Additionally, business units from recent acquisitions have their own Active Directory (AD) instances for authentication.
Option A – A VCF Automation tenant will be created for each business unit.
In VCF 9.0, a Tenant (called an Organization) is the correct construct for creating isolated private clouds for each business unit . Organizations provide infrastructure isolation, security boundaries, and prevent unauthorized access or communication between different groups . Since each business unit requires dedicated development environments and full independence, separate tenants provide the complete isolation needed .
Option C – All tenants will be configured to use their dedicated AD instance for authentication.
When business units operate independently with separate AD instances (due to acquisitions), each VCF Automation tenant must be configured with its own dedicated identity provider . VCF Automation supports configuring an LDAP connection to Active Directory per tenant, allowing each business unit to authenticate against its own corporate directory while maintaining complete administrative separation . The tenant's dedicated AD provides access control to organization-level constructs .
Why Other Options are Incorrect
Option B – All tenants will be configured to use the corporate AD instance for authentication.
This is incorrect because business units from acquisitions have their own AD instances, not a shared corporate AD. Forcing them onto a single corporate AD would violate their operational independence and integration requirements .
Option D – A VCF Automation project will be created for each business unit.
A Project is a logical grouping within a tenant for different lines of business or application teams . Projects do not provide the full infrastructure isolation required for completely independent business units from separate acquisitions. Organizations (tenants) are the correct isolation boundary, while projects exist inside a tenant .
Option E – All projects will be configured to use their dedicated AD instance for authentication.
This is incorrect because projects do not have their own authentication configuration. Authentication is configured at the tenant (Organization) level, not at the project level . Projects inherit the identity provider configuration from their parent tenant.
References
VMware VCF 9.0 Blog – Multi-Tenancy: Organizations provide isolated private clouds for each business unit
Broadcom TechDocs – VCF Automation Identity Management: Tenant authentication supports dedicated LDAP/AD connections
An architect is documenting the design for a new VMware Cloud Foundation (VCF) solution
and makes the following design decision:
Two vSphere clusters will be deployed within the single VI workload domain.
What statement should the architect include as an implication of this design decision?
A. If the solution needs to be scaled at a future date, additional VI workload domains can be deployed.
B. Deploying multiple clusters in the single VI workload domain reduces the number of vCenter Server instances that must be managed.
C. Deploying multiple clusters within the single VI workload domain meets the requirement to segregate Production and Development workloads.
D. All clusters within the single VI workload domain must use vSAN as their principal storage type.
Explanation:
Why Option B is Correct
A VI workload domain is a logical grouping managed by a single vCenter Server instance, regardless of how many vSphere clusters it contains. The official VMware documentation confirms: "A workload domain can consist of one or more vSphere clusters, provisioned automatically by SDDC Manager. Each workload domain contains... One VMware vCenter Server instance".
Therefore, deploying two clusters inside a single VI workload domain means both clusters share the same vCenter Server. The alternative design—placing each cluster in its own VI workload domain—would require a separate vCenter Server instance per domain. The architect's decision to consolidate within one domain directly translates to fewer vCenter Servers to manage.
Why Other Options are Incorrect
A. If the solution needs to be scaled at a future date, additional VI workload domains can be deployed.
This is true for any design—you can always add domains later to any VCF environment. It is a general VCF capability, not a specific implication of placing two clusters in a single domain.
C. Deploying multiple clusters within the single VI workload domain meets the requirement to segregate Production and Development workloads.
A single vCenter Server manages both clusters in this design, so logical separation exists but full administrative isolation does not. If strict security or operational isolation is required, separate workload domains (each with its own vCenter) are the correct choice. The statement overpromises unless the customer explicitly defines segregation as "separate clusters only."
D. All clusters within the single VI workload domain must use vSAN as their principal storage type. This is false.
VI workload domains support multiple storage options, including vSAN, NFS, VMFS on Fibre Channel, and vVols (deprecated in VCF 9.0). The storage type is selected for each cluster independently. A single domain with two clusters could have one using vSAN and another using NFS or FC.
References
Broadcom TechDocs – Workload Domains in VMware Cloud Foundation: "A workload domain can consist of one or more vSphere clusters... Each workload domain contains... One VMware vCenter Server instance"
An architect is working with an organization on the creation of a new VMware Cloud
Foundation (VCF) Private Cloud. The organization has provided the following business
objectives:
Reduce costs of duplicate systems.
Eliminate risks of unsupported platforms.
Reduce public cloud costs.
Eliminate risks from poor documentation.
Use cases: Migration, Containerization, Centralization & Consolidation.
When considering these objectives and use cases, what should the architect include in the
design documentation as a part of the Conceptual Model?
A. A constraint that the solution must be accessible via a HTTPS GUI to all relevant areas of the business.
B. A requirement that the solution will provide support for provisioning and managing workloads based on virtualization and containerization technologies.
C. An assumption that a complete mapping of application dependencies is not available.
D. A risk that the solution may not support the migration of containerized workloads.
Explanation:
In the VMware Design Methodology (VDM), the Conceptual Model is used to capture the "what" and "why" of a project, rather than the "how." It focuses on Requirements, Constraints, Assumptions, and Risks (RCARs) derived directly from business objectives and use cases.
The organization’s stated use cases are Migration, Containerization, Centralization, and Consolidation. Therefore, the solution must support both traditional virtual machines (virtualization) and modern cloud-native applications (containerization) to be successful. By documenting this as a Requirement, the architect ensures that the resulting logical and physical designs (such as including vSphere with Tanzu or specialized workload domains) directly address the business use cases. This requirement also supports the objective of "Reducing costs of duplicate systems" by consolidating different workload types onto a single, unified VCF platform.
Why other options are incorrect:
Option A: This is a Constraint related to the interface and access. While it might be a technical preference, it does not directly map to the core business use cases of migration or containerization mentioned in the prompt.
Option C: An Assumption about missing application dependency mapping is a common reality in migration projects, but it is a project management or discovery factor. It does not address the fundamental goal of the design, which is to provide a platform for the specified use cases.
Option D: Identifying a Risk that the solution may not support containerized workloads would be contradictory to the project’s goals. VCF is explicitly designed to support containerization via VMware Tanzu; documenting this as a risk suggests a fundamental misunderstanding of the chosen platform's capabilities.
References
VMware Certified Design Expert (VCDX) Methodology: "Creating the Conceptual Design" and defining Requirements based on Use Cases.
VMware Cloud Foundation 9.0 Design Guide: "Business Objectives and Use Case Alignment."
| Page 5 out of 12 Pages |
| 3456 |
| 2V0-13.25 Practice Test Home |