5V0-23.20 Exam Dumps - VMware vSphere with Tanzu Specialist

As a vSphere administrator, you can replace the certificate for the virtual IP address (VIP) to securely connect to the Supervisor Cluster API endpoint with a certificate signed by a CA that your hosts already trust. The certificate authenticates the Kubernetes control plane to DevOps engineers, both during login and subsequent interactions with the Supervisor Cluster.

Prerequisites

Verify that you have access to a CA that can sign CSRs. For DevOps engineers, the CA must be installed on their system as a trusted root.

Procedure

• In the vSphere Client, navigate to the Supervisor Cluster.
• Click Configure then under Namespaces select Certificates.
• In the Workload platform MTG pane, select Actions > Generate CSR.
• Provide the details for the certificate.
• Once the CSR is generated, click Copy.
• Sign the certificate with a CA.
• From the Workload platform MTG pane, select Actions > Replace Certificate.
• Upload the signed certificate file and click Replace Certificate.
• Validate the certificate on the IP address of the Kubernetes control plane.

A virtual machine class is a request for resource reservations for processing power on the virtual machine (VM), including CPU and memory (RAM). For example, the VM class type named "guaranteed-large" reserves 4 CPU and 16 GB RAM. See Default Virtual Machine Classes for a list of default VM classes and their corresponding CPU and RAM reservations.

The VM disk size is set by the OVA template, not the VM class definition. For Tanzu Kubernetes releases, the disk size is 16GB. See About Tanzu Kubernetes release Distributions.

There are two reservation types for VM classes: guaranteed and best effort. The guaranteed class fully reserves its configured resources. This means that for a given cluster the spec.policies.resources.requests matches the spec.hardware settings. The best effort class allows resources to be overcommitted. For production workloads it is recommended that you use the guaranteed VM class type.