Free 2V0-21.23 Practice Test Questions 2026

99 Questions


Last Updated On : 8-Jul-2026


An administrator is planning to upgrade a VMware vCenter instance to version 8. It is currently integrated with the following solutions:


* VMware Aria Automation
* VMware Cloud Director


Which tool can the administrator use to run Interoperability reports before the upgrade process?


A. sphere Update Manager


B. VMware Aria Suite Lifecycle


C. vCenter Server Update Planner


D. vSphere Lifecycle Manager





C.
  vCenter Server Update Planner

Explanation:

This question focuses on the pre-upgrade planning process for a vCenter Server that is part of a larger ecosystem. Before a major version upgrade, it is critical to check for compatibility with integrated solutions like Aria Automation and Cloud Director. The administrator needs a tool specifically designed to generate these third-party interoperability reports, not just a tool for applying updates.

Correct Option

C. vCenter Server Update Planner:
This is the correct tool. The vCenter Server Update Planner is a web-based service (accessible via the VMware Product Interoperability Matrices portal) designed specifically for pre-upgrade planning. It allows administrators to generate detailed reports that analyze the current vCenter environment and its integrated products, identifying any compatibility issues before starting an upgrade to a new version like vSphere 8.

Incorrect Option

A. vSphere Update Manager (VUM):
VUM (now integrated as a component within vSphere Lifecycle Manager) is used for scanning and remediating ESXi hosts and VMs for compliance against baselines. It is not designed to generate interoperability reports for integrated VMware products like Aria Automation and Cloud Director.

B. VMware Aria Suite Lifecycle:
This tool manages the lifecycle (deployment, configuration, upgrade) of the Aria Suite products (Operations, Logs, Automation, etc.) themselves. It is not used for generating pre-upgrade interoperability reports for vCenter Server and its external integrations.

D. vSphere Lifecycle Manager (vLCM):
vLCM is used for centralized lifecycle management of ESXi hosts, including image-based management and firmware/driver updates. While it handles host upgrades, it does not provide interoperability reporting for vCenter Server's integrated solutions.

Reference

VMware vSphere Documentation: vCenter Server Upgrade Planning (This guide directs users to the vCenter Server Update Planner for pre-upgrade interoperability checks with products like Aria Automation and Cloud Director.)

An administrator runs a two-node vSphere cluster, which contains two domain controller virtual machines (VMs). The administrator wants to ensure that VMs run on separate hosts without interfering with normal maintenance operations.
How should the administrator configure Distributed Resource Scheduler (DRS)?


A. Create a 'Must run Virtual Machines to Hosts' anti-affinity rule.


B. Create a 'Virtual Machines to Virtual Machines' anti-affinity rule.


C. Create a 'Virtual Machines to Virtual Machines' dependency rule.


D. Create a 'Should run Virtual Machines to Hosts' anti-affinity rule.





D.
  Create a 'Should run Virtual Machines to Hosts' anti-affinity rule.

Explanation:

This question involves configuring high availability for critical VMs (domain controllers) in a small cluster. The goal is to keep the VMs on separate hosts for fault tolerance while allowing vSphere DRS the flexibility to perform maintenance tasks like vMotion or placing a host into maintenance mode. The solution requires an anti-affinity rule that provides a strong recommendation but is not absolute.

Correct Option

D. Create a 'Should run Virtual Machines to Hosts' anti-affinity rule.
This is the optimal configuration. A "Should" rule instructs DRS to try to keep the two domain controller VMs on separate hosts under normal conditions. However, it provides the flexibility for DRS to temporarily violate the rule if necessary to perform a critical operation, such as evacuating a host for maintenance, without causing an error. This balances availability with operational practicality.

Incorrect Option

A. Create a 'Must run Virtual Machines to Hosts' anti-affinity rule.
A "Must" rule is too restrictive. It would prevent the two VMs from ever running on the same host. If an administrator attempted to place one of the hosts into maintenance mode, DRS would be unable to vMotion both VMs to the single remaining host without violating the rule, thus blocking the maintenance operation.

B. Create a 'Virtual Machines to Virtual Machines' anti-affinity rule.
This option is incomplete and does not specify the rule type ("Must" or "Should"). More importantly, the standard and correct practice for separating VMs across hosts is to use a "Virtual Machines to Hosts" rule in a specific host group, not a "Virtual Machines to Virtual Machines" rule, which is less common for this specific use case.

C. Create a 'Virtual Machines to Virtual Machines' dependency rule.
A dependency rule is used to define startup/shutdown order for VMs, not to control their placement across hosts for availability. It is unrelated to the requirement of keeping VMs on separate physical servers.

Reference

VMware vSphere Documentation: Creating DRS VM-Host Rules (This guide explains the difference between "Must" and "Should" rules, noting that "Should" rules provide a recommendation that DRS can violate if necessary.)

An administrator wants to use tag-based placement rules on their virtual machine disks using VMware vCenter.
Which option would allow the administrator to achieve this?


A. Storage Policy Based Management


B. Storage I/O Control


C. vSphere Storage APIs for Storage Awareness (VASA)


D. vSphere Distributed Resource Scheduler (DRS)





A.
  Storage Policy Based Management

Explanation:

This question focuses on the mechanism for automating VM storage placement based on custom criteria, such as tags. The goal is to have vCenter automatically select an appropriate datastore for a virtual disk based on a tag assigned to the VM or the disk itself, rather than the administrator manually choosing a datastore. This is a core function of the software-defined storage management framework.

Correct Option

A. Storage Policy Based Management (SPBM):
This is the correct framework. SPBM allows an administrator to create storage policies that define requirements for a VM's storage (e.g., performance, availability, tags). These policies can include rules based on datastore tags. When deploying a VM, the administrator selects the policy, and vSphere automatically places the VM on a datastore whose tags match the policy's rules, achieving tag-based placement.

Incorrect Option

B. Storage I/O Control (SIOC):
SIOC is a feature for managing storage I/O congestion on a datastore. It dynamically allocates I/O resources to VMs during periods of high latency. It does not control initial VM placement or interact with tags for placement decisions.

C. vSphere Storage APIs for Storage Awareness (VASA):
VASA is an enabling technology for SPBM, not the user-facing tool. Storage arrays use VASA Providers to expose their capabilities (e.g., replication, deduplication) to vCenter. SPBM then consumes this information to create more advanced policies, but the administrator uses the SPBM interface, not VASA directly, to create tag-based rules.

D. vSphere Distributed Resource Scheduler (DRS):
DRS is responsible for balancing CPU and memory load across a cluster of ESXi hosts. It manages compute resources, not storage placement. While it integrates with storage DRS (which can use SPBM), DRS itself does not handle tag-based disk placement.

Reference

VMware vSphere Documentation: VMware Storage Policy-Based Management (This guide explains how to use SPBM to create tag-based placement rules for virtual machines.)

An administrator needs to update a VMware vCenter instance to a newer minor release version. Due to restrictions within the environment, the vCenter instance does not have access to the Internet As a first step, the administrator downloads the required update on another machine.


What are the next steps the administrator must perform to complete the update?

A Place the update ISO file in a Virtual Machine File System (VMFS) datastore.
Use the vSphere Client to select the update ISO file as the source for the update.


A. Place the update ISO file in a Virtual Machine File System (VMFS) datastore. Use the vSphere Client to select the update ISO file as the source for the update


B. Mount the ISO update file to the CD-ROM drive of the vCenter instance Use the vCenter Management Interface to select the CD-ROM as the source for the update


C. Place the ISO update file in a folder accessible to the vCenter instance over HTTPS. Use the vCenter Management Interface to select the update file as the source for the update


D. Place the ZIP update file in a folder accessible to the vCenter instance over HTTPS Use the vSphere Client to select the update file as the source for the update.





B.
  Mount the ISO update file to the CD-ROM drive of the vCenter instance Use the vCenter Management Interface to select the CD-ROM as the source for the update

Explanation:

This question tests the procedure for performing an offline (air-gapped) patch or update of the vCenter Server Appliance when it cannot access the internet. The administrator must use the VCSA's built-in Management Interface to mount the update ISO file directly, as the vSphere Client is not used for this specific VCSA lifecycle operation.

Correct Option

B. Mount the ISO update file to the CD-ROM drive of the vCenter instance.
Use the vCenter Management Interface to select the CD-ROM as the source for the update. This is the correct and documented procedure for an offline update. The administrator must first make the ISO file available to the vCenter VM, typically by uploading it to a datastore and mounting it as a CD-ROM device. Then, they must log in directly to the vCenter Management Interface (port 5480) to run the update and select the mounted CD-ROM as the repository source.

Incorrect Option

A. Place the update ISO file in a Virtual Machine File System (VMFS) datastore.
Use the vSphere Client to select the update ISO file as the source for the update. This is incorrect. The vSphere Client (HTML5 client) is not used to apply patches or updates to the vCenter Server Appliance itself. This operation is exclusively performed through the vCenter Management Interface.

C. Place the ISO update file in a folder accessible to the vCenter instance over HTTPS.
Use the vCenter Management Interface to select the update file as the source for the update. While the VAMI can use an HTTP/HTTPS URL as a source, this requires setting up a web server. The more direct and common method for a single file is to mount it as a CD-ROM, as described in option B. This option adds unnecessary complexity.

D. Place the ZIP update file in a folder accessible to the vCenter instance over HTTPS.
Use the vSphere Client to select the update file as the source for the update. This is incorrect for two reasons. First, the update file for the VCSA is an ISO, not a ZIP file. Second, as stated in option A, the vSphere Client is not the tool used for updating the VCSA; the VAMI is.

Reference

VMware vSphere Documentation: Update vCenter Server Appliance in an Air-Gapped Environment (This guide outlines the exact steps, which involve mounting the ISO and using the VAMI to perform the update.)

An administrator creates a virtual machine that contains the latest company-approved software, tools and security updates. Company policy requires that only full clones are allowed for server workloads.

A combination of which two tasks should the administrator complete to prepare for the deployment of this virtual machine for multiple users? (Choose two.)


A. Set appropriate permissions on the virtual machine.


B. Create a virtual machine customization specification.


C. Upgrade the virtual hardware.


D. Convert the virtual machine to a template.


E. Take a snapshot of the virtual machine.





B.
  Create a virtual machine customization specification.

D.
  Convert the virtual machine to a template.

Explanation:

This question involves preparing a "golden image" VM for mass deployment in an environment that mandates full clones. The process requires making the base VM immutable to prevent changes and ensuring that each deployed clone can be customized with unique settings (like hostname and IP) to avoid conflicts. This is a standard procedure for templating in vSphere.

Correct Option

B. Create a virtual machine customization specification.
This is essential for deploying multiple clones from a single source. The customization specification is a file that contains the settings (such as a unique computer name, network configuration, and license key) that will be applied to each new full clone. This ensures every deployed VM has a unique identity on the network, preventing conflicts.

D. Convert the virtual machine to a template.
This is the foundational step. Converting the configured VM into a template makes it immutable, preventing users from powering it on or altering it. It becomes a master image stored in the vCenter inventory, from which multiple, identical full clones can be deployed in a controlled manner.

Incorrect Option

A. Set appropriate permissions on the virtual machine.
While managing permissions is a general best practice for security, it is not a specific preparatory step for enabling multi-user deployment from a template. Permissions can be set on the template itself after creation.

C. Upgrade the virtual hardware.
This is an action performed on an existing, deployed VM to gain access to new virtual hardware features. It is not a step in preparing a base VM for templating. The virtual hardware version is part of the base image and will be inherited by all clones.

E. Take a snapshot of the virtual machine.
Snapshots are used for capturing a VM's state at a point in time for purposes like testing or rollback. They are not used for templating. A template is a separate object type in the inventory, and deploying from a template does not involve or use snapshots.

Reference

VMware vSphere Documentation: Creating a Template and Deploying a Virtual Machine (This covers the process of converting a VM to a template and using customization specifications during deployment.)

Which step is completed during Stage 1 of the vCenter Server Appliance deployment?


A. Join a vCenter Single Sign-On domain


B. Create a new vCenter Single Sign-On domain


C. Select the deployment size


D. Configure SSH access





C.
  Select the deployment size

Explanation:

This question tests the specific knowledge of the two-stage deployment process for the vCenter Server Appliance (VCSA). Stage 1 is the initial deployment phase where you configure the basic appliance settings on the target ESXi host or vCenter Server. Stage 2 is the post-deployment configuration where you set up the core vCenter services. The administrator must identify which task belongs to the initial deployment stage.

Correct Option

C. Select the deployment size.
This is a critical step performed in Stage 1. During the initial deployment wizard, you must choose the deployment size (e.g., Tiny, Small, Medium, Large) based on the scale of your environment. This selection determines the CPU, memory, and storage resources allocated to the VCSA, and it is a prerequisite for deploying the appliance onto the ESXi host.

Incorrect Option

A. Join a vCenter Single Sign-On domain:
This is a Stage 2 configuration. After the VCSA is deployed and has booted, Stage 2 involves configuring the Single Sign-On (SSO) settings. At this point, you can choose to join an existing SSO domain (for enhancing a linked mode group) or create a new one.

B. Create a new vCenter Single Sign-On domain:
Similar to option A, this is also a Stage 2 task. The initial setup of the SSO domain (setting the domain name, password, and site name) is part of the post-deployment configuration, not the initial appliance deployment.

D. Configure SSH access:
Configuring SSH access for the VCSA's Bash shell is an administrative task performed after the deployment is fully complete, typically through the VCSA Management Interface (VAMI). It is not part of the Stage 1 deployment wizard.

Reference

VMware vSphere Documentation: Deploying the vCenter Server Appliance (This guide details the two-stage process, clearly separating Stage 1 (deployment) tasks like selecting size and network from Stage 2 (configuration) tasks like setting up SSO.)

Which two tasks can be completed using vSphere LifeCycle Manager? (Choose two.)


A. Manage the firmware lifecycle of ESXi hosts that are part of a managed cluster with a single image.


B. Check that the ESXi hosts are compliant with the recommended baseline and update the hosts


C. Upgrade VMware vCenter from version 7 to 8.


D. Check the hardware compatibility of the hosts in a cluster against the VMware Compatibility Guide (VCG) using baselines.


E. Manage the firmware lifecycle of ESXi hosts are part of a managed cluster using baselines





A.
  Manage the firmware lifecycle of ESXi hosts that are part of a managed cluster with a single image.

B.
  Check that the ESXi hosts are compliant with the recommended baseline and update the hosts

Explanation

This question tests the understanding of the two operational modes within vSphere Lifecycle Manager (vLCM): Baselines and Images. vLCM is the central tool in vSphere 8 for managing the lifecycle of ESXi hosts, including their software and, with certain hardware, their firmware. It is not used for upgrading vCenter Server itself.

Correct Option

A. Manage the firmware lifecycle of ESXi hosts that are part of a managed cluster with a single image.
This is a key capability of vLCM when using the desired state image mode. For supported server vendors and models, vLCM can import vendor-specific firmware bundles and manage the firmware and driver updates alongside the ESXi version as a single, compliant image.

B. Check that the ESXi hosts are compliant with the recommended baseline and update the hosts.
This is the traditional function of vLCM (and its predecessor, Update Manager) using baselines. Administrators can attach baselines (collections of patches, extensions, or upgrades) to a cluster, check host compliance against them, and remediate (update) the hosts to bring them into compliance.

Incorrect Option

C. Upgrade VMware vCenter from version 7 to 8.
This is incorrect. The vCenter Server Appliance has its own separate upgrade process, typically initiated from the VCSA installer or the VCSA Management Interface (VAMI). vLCM is designed for ESXi host lifecycle management, not for upgrading the vCenter application itself.

D. Check the hardware compatibility of the hosts in a cluster against the VMware Compatibility Guide (VCG) using baselines.
This is not a function of vLCM. The VMware Compatibility Guide (VCG) is an external website used for manual validation before procurement or installation. vLCM does not integrate with the VCG to perform automated hardware compatibility checks.

E. Manage the firmware lifecycle of ESXi hosts are part of a managed cluster using baselines.
This is incorrect because it specifies the wrong mode. Firmware management is an advanced feature exclusive to vLCM's desired state image mode. The traditional baseline mode can only manage ESXi software (patches, VIBs) and cannot manage host firmware.

Reference

VMware vSphere Documentation: vSphere Lifecycle Manager Overview (This details the capabilities of vLCM, including using images for firmware management and baselines for patch management.)

A group of new virtual machines have been deployed using thin-provisioned disks due to the limited storage space available in an environment. The storage team has expressed concern about extensive use of this type of provisioning. An administrator is tasked with creating a custom alarm to notify the storage team when thin provisioning reaches a certain capacity threshold. Where must the administrator define this alarm?


A. Datastore


B. Data center


C. Datastore cluster


D. Datastore cluster





A.
  Datastore

Explanation:

This question focuses on the correct object scope for creating a custom alarm related to thin provisioning. The concern is about the actual space usage (provisioned vs. used) on the shared storage container itself. Alarms must be defined on the vSphere inventory object that directly provides the relevant metrics and triggers the condition you want to monitor.

Correct Option

A. Datastore:
This is the correct object. A datastore is the storage container where the virtual disks are stored. It provides key metrics like "Datastore Disk Provisioned" and "Datastore Disk Used". An alarm defined on the datastore object can monitor the ratio of provisioned space to actual used space, which is the direct measure of thin-provisioning risk. This alerts the team before the datastore runs out of physical capacity.

Incorrect Option

B. Data center:
A data center is a logical container for organizing inventory objects like hosts, clusters, and datastores. It does not have its own storage-level performance or capacity metrics. Defining an alarm here would not provide the specific, granular data needed to monitor thin provisioning on individual datastores.

C. Datastore cluster:
While a datastore cluster (used by Storage DRS) groups datastores, a custom alarm for thin provisioning is best defined at the individual datastore level. This provides a precise alert for the specific storage volume that is running out of physical space, allowing for targeted action. An alarm on the cluster might aggregate data, making it less specific.

D. Virtual machine:
A virtual machine alarm can monitor the space usage of its own virtual disks, but it cannot assess the overall thin-provisioning risk for the shared datastore. The storage team's concern is about the datastore's total committed capacity, not the usage of a single VM.

Reference

VMware vSphere Documentation: Create a Datastore Alarm (This guide explains how to create custom alarms on various inventory objects, including datastores, and lists the available metrics.)

An administrator is tasked with configuring vSphere Trust Authority. The administrator has completed the following steps:

• Set up the workstation
• Enabled the Trust Authority Administrator
• Enabled the Trust Authority State
• Collected information about the ESXi hosts and vCenter to be trusted

Which step does the administrator need to complete next?


A. Import the Trusted Host information to the Trust Authority Cluster


B. Import the Trusted Cluster information to the Trusted Hosts


C. Create the Key Provider on the Trusted Cluster


D. Import the Trusted Host information to the Trusted Cluster





A.
  Import the Trusted Host information to the Trust Authority Cluster

Explanation:

Based on the official VMware vSphere 8.x documentation and the standard vSphere Trust Authority (TA) configuration workflow, after collecting information about the ESXi hosts and vCenter to be trusted, the next step is to import that information into the Trust Authority Cluster.

Why the other options are incorrect:

B. Import the Trusted Cluster information to the Trusted Hosts
– This reverses the direction of trust establishment. Trust flows from the Trust Authority Cluster to the Trusted Cluster, not the other way around.

C. Create the Key Provider on the Trusted Cluster
– Key providers are created on the Trust Authority Cluster, not on the Trusted Cluster. Additionally, key provider creation occurs after importing trusted host information.

D. Import the Trusted Host information to the Trusted Cluster
– The Trusted Cluster is the cluster containing hosts that will be attested; it does not need to import its own host information. Information about trusted hosts is imported into the Trust Authority Cluster to establish which hosts are allowed to receive attestation and keys.

Reference

VMware vSphere 8.x Security Documentation:"Configuring vSphere Trust Authority" – Step 5 of the configuration sequence is "Import the Trusted Host Information to the Trust Authority Cluster"

An administrator plans to bri ng VMware vCenter offline in order to perform hardware mainte-nance on the host where the vCenter Server Appliance is running.

Which vSphere feature must be configured to ensure that vCenter users experience minimal downtime?


A. vSphere Distributed Resource Scheduler


B. Hybrid Linked Mode


C. vCenter Server High Availability


D. Enhanced Linked Mode





C.
  vCenter Server High Availability

Explanation:

vCenter Server High Availability (VCHA) protects the vCenter Server Appliance by maintaining an Active node, a Passive node on a different host, and a Witness node. When the Active node's host requires hardware maintenance, the administrator performs a planned manual failover to the Passive node. This failover takes approximately 1 to 5 minutes, allowing users to experience only a brief interruption instead of prolonged downtime. Without VCHA, shutting down the host forces vCenter offline until the host is serviced and vCenter is manually restarted.

Why other options are incorrect

A. vSphere Distributed Resource Scheduler (DRS):
DRS balances virtual machine workloads across hosts but cannot protect the vCenter VM itself. DRS also requires vCenter to be operational for most of its functions, creating a circular dependency.

B. Hybrid Linked Mode:
This allows cross-version management between vCenter 8.x and older versions but provides no failover or redundancy for any single vCenter instance.

D. Enhanced Linked Mode:
This joins multiple vCenters into a single sign-on domain for shared permissions and licensing. It does not offer automatic or manual failover; an offline vCenter remains offline until manually restored.

Reference

VMware vSphere 8.x Availability Documentation: "vCenter Server High Availability (VCHA) – Planned Failover for Maintenance." VMware Knowledge Base article 2147575 describes manual failover steps to minimize downtime during host hardware maintenance.

An administrator Is performing maintenance activities and discovers that a Virtual Machine File System (VMFS) datastore has a lot more used capacity than expected. The datastore contains 10 virtual machines (VMs) and, when the administrator reviews the contents of the associated datastore, discovers that five- virtual machines have a snapshot file (-delta.vmdk flies) that has not been modified In over 12 months. The administrator chei kfl the Snapshot Manager within the vSphere Client and confirms that there are no snapshots visible. Which task should the administrator complete on the virtual machines to free up datastore space?


A. Consolidate the snapshots for each VM.


B. Inflate the disk files for each VM.


C. Delete all snapshots for each VM.


D. Storage vMotion each VM to another datastore.





A.
  Consolidate the snapshots for each VM.

Explanation:

The administrator has discovered orphaned snapshot delta files (-delta.vmdk) on the datastore that are not visible in the Snapshot Manager. This is a known VMware issue where snapshot deletion completes partially—the snapshot reference is removed from the .vmsd file so Snapshot Manager shows nothing, but the consolidation step fails, leaving delta files on disk . The VM continues running on these orphaned delta files, consuming datastore capacity. Running the Consolidate command forces ESXi to merge any orphaned delta data back into the base VMDK and remove the redundant files, freeing up space and resolving the inconsistency .

Why other options are incorrect

B. Inflate the disk files for each VM.
This converts thin-provisioned disks to thick provisioning. It does not merge or remove snapshot delta files and would actually increase used capacity rather than free space.

C. Delete all snapshots for each VM.
The Snapshot Manager shows no snapshots to delete because the snapshot metadata is already gone. The "Delete All" operation would have nothing to act upon. However, VMware KB recommends taking a new snapshot and then deleting all to force consolidation , but the direct action to free space from already-orphaned deltas is Consolidate.

D. Storage vMotion each VM to another datastore.
While this can sometimes clear orphaned files if the VM is running on a delta chain, it is not the standard or recommended task for this scenario. It consumes significant time and resources, and does not guarantee cleanup of all orphaned delta files.

Reference

VMware Knowledge Base Article 316545: "Undetected Snapshots in Snapshot Manager and Snapshot Chain" – Run disk consolidation on the VM from vCenter when orphaned delta files exist but snapshots are not visible in Snapshot Manager.

An administrator is investigating user logon failures for a VMware vCenter instance
Where can the administrator find log files containing information related to user login activities?


A. On the vCenter Management Interface


B. On the ESXi host using the Direct Console User Interface (®)


C. On the vCenter Server Appliance


D. In the vSphere Client when viewing the vCenter virtual machine





C.
  On the vCenter Server Appliance

Explanation:

User login activities for vCenter Server are recorded in log files that reside on the vCenter Server Appliance (VCSA) itself. The primary log file containing successful and failed login events is /var/log/audit/sso-events/audit_events.log . This file captures login successes with response code 200, login failures with response code 401, and logout activities, including the username, client IP address, and timestamp for each event . Additionally, vCenter Single Sign-On (SSO) authentication logs are stored in /var/log/vmware/sso/ on the VCSA, and VMware Directory Service logs are in /var/log/vmware/vmdird/ . Accessing these logs requires SSH access to the VCSA or using the appliance shell with the showlog command .

Why other options are incorrect

A. On the vCenter Management Interface:
The vCenter Management Interface (accessible via port 5480) is used for appliance management, monitoring, and support bundle creation . While support bundles contain log files, the interface itself does not provide direct viewing of login activity logs. This is a management portal, not a log storage location.

B. On the ESXi host using the Direct Console User Interface (DCUI):
ESXi hosts maintain their own authentication logs, such as /var/run/log/auth.log and /var/log/vmware/hostd.log, but these record logins to the ESXi host itself (root user, dcui user), not logins to the vCenter Server instance . Investigating vCenter user login failures requires vCenter logs, not ESXi host logs.

D. In the vSphere Client when viewing the vCenter virtual machine:
The vSphere Client displays events and tasks for managed objects, including some authentication events. However, detailed login failure diagnostics with response codes and full audit trails are not available through the vSphere Client VM view. Complete login records require direct access to log files on the VCSA filesystem .

Reference

Broadcom Knowledge Base Article 423205: "How to find vCenter Server login record" – Login events recorded in /var/log/audit/sso-events/audit_events.log. Broadcom TechDocs: vSphere Authentication Service Logs Reference for vCenter Server 8.x – SSO logs located in /var/log/vmware/sso/ and vmdir logs in /var/log/vmware/vmdird/.


Page 2 out of 9 Pages
Next
123
2V0-21.23 Practice Test Home

What Makes Our VMware vSphere 8.x Professional Practice Test So Effective?

Real-World Scenario Mastery: Our 2V0-21.23 practice exam don't just test definitions. They present you with the same complex, scenario-based problems you'll encounter on the actual exam.

Strategic Weakness Identification: Each practice session reveals exactly where you stand. Discover which domains need more attention, before VMware vSphere 8.x Professional exam day arrives.

Confidence Through Familiarity: There's no substitute for knowing what to expect. When you've worked through our comprehensive 2V0-21.23 practice exam questions pool covering all topics, the real exam feels like just another practice session.