Windows Defender Credential Guard requires UEFI firmware and Secure Boot to function properly.

Option B (Enable UEFI with Secure Boot) is correct:

Credential Guardrequires a UEFI-based boot moderather thanLegacy BIOS.

Secure Boot ensures only trusted OS components load, reducing attack surface for credential theft.

Option A (Update vCPU to 8) is incorrect:

Increasing vCPUs does not impactCredential Guard compatibility.

Option C (Use Windows Server 2022) is incorrect:

Windows Server 2019supports Credential Guard; upgrading to 2022 isnot required.

Option D (Update Memory to 16GB) is incorrect:

Credential Guard has no minimum RAM requirementbeyond general OS needs.

For high-performance databases like MySQL, optimizing storage access is critical.

Option B (Create additional vDisks for SQL data) is correct:

Multiple vDisks allowbetter parallelismin NutanixDSF (Distributed Storage Fabric), improving IOPS.

Option C (Use LVM to stripe SQL data across multiple vDisks) is correct:

Striping across multiple disksdistributes the load, reducing latency.

Option A (Thick provisioned vDisks) is incorrect:

Nutanixalways provisions vDisks thinly, and thick provisioningdoes not improve IOPS.

Option D (Thin provisioned vDisks) is incorrect:

All Nutanix vDisksare thin-provisioned by default.

The best way to test the performance of a Linux VM that is underperforming at the storage level on an ESXi cluster, while minimizing downtime, is to migrate the VM to an AHV-based cluster. This allows leveraging Nutanix-native storage optimizations and hypervisor capabilities of AHV.

From theNutanix Enterprise Cloud Administration (ECA)course materials:

“AHV and Nutanix storage integration is natively optimized for performance, leveraging capabilities like data locality, I/O path enhancements, and advanced metadata management. Migrating workloads from ESXi to AHV can often resolve performance bottlenecks associated with storage I/O.”

Additionally:

“Using the Nutanix Move tool, administrators can migrate running VMs between different hypervisors (e.g., ESXi to AHV) with minimal downtime and fully automated steps, reducing the operational burden.”

Increasing vCPUs would not address storage-level performance issues, and collapsing disks would require significant reconfiguration and VM downtime. vDisk sharding is not directly user-configurable and not applicable in this scenario.

For optimal Disaster Recovery performance, new nodes must match or exceed the storage performance of existing nodes.

Option A (New node must have at least 2 SSDs) is correct:

Since the G7 nodes havetwo SSDs, replacing G5 nodes withat least 2 SSDsensuresconsistent SSD cache and performance.

Option B is incorrect:

G7 or G8 nodes may help, but storage performance is more critical for DR.

Option C is incorrect:

CPU core count does not impact DR storage performance as much as SSD capacity.

Option D is incorrect:

Hybrid nodes are already in use, but SSDs must match for performance balance.

Understanding the Issue

The administrator is investigating VM performance complaints and is analyzing CPU Ready Time data.

CPU Ready Time is a crucial metric in Nutanix and virtualization environments (AHV, ESXi, or Hyper-V).

It measures the amount of time a VM is waiting for CPU scheduling due to resource contention.

High CPU Ready Time indicates that VMs are ready to run but are waiting because the host lacks available CPU resources.

Analysis of the Exhibit

The graph shows CPU Ready Time spikes for multiple VMs.

Some VMs have CPU Ready Time exceeding 18% to 21.5%, which is very high.

A healthy CPU Ready Time should be below 5%.

Values above 10% indicate CPU contention, and anything above 20% is critical and requires immediate troubleshooting.

Evaluating the Answer Choices

❌(A) Check the number of vCPUs assigned to each CVM. (Incorrect)

CVMs (Controller VMs) have fixed CPU allocation, and modifying their vCPU count is not recommended unless advised by Nutanix Support.

The issue is related to VM CPU contention, not CVM configuration.

✅(B) Review host CPU utilization. (Correct Answer)

High CPU Ready Time suggests CPU overcommitment or host saturation.

The administrator should check host CPU usage in Prism Central to determine if the cluster is overloaded.

If host CPU usage is consistently above 85–90%, VMs are competing for CPU resources, leading to high CPU Ready Time.

❌(C) Assess cluster SSD capacity. (Incorrect)

SSD capacity impacts storage performance (latency, read/write speeds) but does not affect CPU Ready Time.

High CPU Ready Time is a CPU scheduling issue, not a storage bottleneck.

❌(D) Enable VM memory oversubscription. (Incorrect)

Memory oversubscription does not impact CPU scheduling.

Enabling memory oversubscription affects RAM allocation, but CPU Ready Time is strictly related to CPU contention.

Next Steps to Diagnose & Resolve the Issue

Review Host CPU Utilization:

Navigate to Prism Central → Analysis → CPU Usage per Host.

Identify hosts experiencing high CPU load.

Check VM vCPU Allocation:

Ensure that VMs do not have excessive vCPUs assigned, which can lead to scheduling inefficiencies.

Overprovisioning vCPUs can cause unnecessary contention.

Balance Workload Across Hosts:

Use Nutanix AHV DRS (Dynamic Scheduling) or VMware DRS to redistribute VMs across hosts.

Check if certain hosts are overloaded while others have spare CPU capacity.

Consider Scaling Out the Cluster:

If CPU usage is consistently high, adding more nodes may be required to reduce CPU contention.

Multicloud Infrastructure References & Best Practices

CPU Ready Time Best Practices:

Keep CPU Ready Time below 5%.

Avoid overcommitting vCPUs on heavily loaded hosts.

Monitor Prism Central Runway Metrics to predict future CPU resource needs.

Nutanix AHV CPU Scheduling Optimization:

Ensure proper VM sizing (avoid excessive vCPU allocation).

Balance workloads using Nutanix AHV DRS.

A cluster runway below 365 days does not necessarily indicate an issue if Intelligent Operations determines that workloads are sustainable.

Option B (Because new workloads are sustainable) is correct:

Nutanixanalyzes resource trendsand marks clusters as healthyif new workloads are within projected capacity.

Option A (Storage Runway is still good) is incorrect:

Storage isone component, butCPU and memoryalso affect runway calculations.

Option C (Recommended resources) is incorrect:

Recommendations help optimize capacity, butdo not define cluster health.

Option D (Target is 1 month) is incorrect:

The scenario’s target window does not impact the actual runway calculation.

When creating a storage container in Nutanix, the administrator must configure the correctcapacity settings:

Option A (Prism Element with Advertised Capacity of 100 GiB) is correct:

Advertised Capacitydefineslogical limitsfor the container (i.e., how much space it reports as available).

Inline Compressioncan be enabled directly in Prism Element.

Option B (Create in Prism Element without Advertised Capacity)is incorrect:

Without specifyingAdvertised Capacity, the container may consume unlimited storage.

Option C (Create in Prism Central with Reserved Capacity)is incorrect:

Reserved Capacityapplies toQuality of Service (QoS) policies, not storage limits.

Option D (Create in Prism Central without capacity limits)is incorrect:

Prism Central can manage storage but does not directly enforceRF1 and compression policies.

In Nutanix Protection Domain-based replication, both thesourceanddestinationstorage containersmust have the same Replication Factor (RF)to ensure consistent data protection and replication. This is a key requirement for the data’s protection and integrity.

From theNutanix ECAdocumentation:

“Replication and recovery require that the source and destination containers have the same RF setting (either RF2 or RF3). If the RF does not match, replication and recovery points will not be generated in the DR site.”

The other options:

A (NGT): NGT is not required for crash-consistent protection.

C (Windows updates): Updates are not directly relevant to replication consistency.

D (container name): Names can differ; what matters is the container’s RF setting.

Dead VMs and Zombie VMs are different classifications of inactive VMs in Nutanix, and their deletion timelines depend on Playbook configuration.

Dead VMs→ Consideredinactive after 30 days, then must wait99 more daysbefore deletion.

Total time: 30 + 99 = 129 days.

(Option C is correct).

Zombie VMs→ Consideredinactive after 30 days, then must wait99 more daysbefore deletion.

Total time: 30 + 99 = 129 days.

(Option B is correct).

InNutanix Capacity Planning,Overall Runwayrepresents how long the cluster can support current and new workloads before resources are exhausted.

Even if the runway is below 365 days, the system considers the cluster to be in good shape if new workloads are sustainable (Option B).

Option A is incorrect: Storage runway alone is not the only factor; CPU and memory are equally important.

Option C is incorrect: The presence of recommended resources does not mean the cluster is in good shape.

Option D is incorrect: The target of 1 month affects projections but does not explain why the cluster is in good shape.

In a dark site deployment, LCM does not automatically fetch updates from the internet. The administrator must manually upload compatibility bundles.

Option B (The latest compatibility bundle has not been uploaded) is correct:

Thecompatibility bundlecontainsfirmware mappings, allowing LCM to detect the correct BIOS version.

Option A is incorrect:

AOSdoes not need to be upgraded firstfor a BIOS update.

Option C is incorrect:

TheBMC firmware does not always need updatingbefore BIOS updates.

Option D is incorrect:

In a dark site deployment,LCM does not rely on an internet connection, so webserver access is not required.

As per the Nutanix Prism Web Console Guide (v7.0), specifically at this page:

Expand Cluster - Node Discovery, it is clearly mentioned that:

“The expand cluster discovery step (finding nodes to add) requires that IPv6 multicast packets are allowed through the physical switch. Therefore, the expand cluster process does not work when IPv6 is disabled in your network.”

This directly confirms that for automatic discovery of new nodes, IPv6 multicast must be enabled and allowed on the physical switches connecting Nutanix nodes. This is a recent update in the cluster expansion discovery process that replaces the previous use of IPv4 multicast in earlier Nutanix AOS versions.

VMs using GPU pass-through cannot be live-migrated because they are directly tied to a physical GPU on a specific host.

Option B (VMs use GPU pass-through) is correct:

Pass-through devices (such as GPUs) are directly assigned to VMs, makingmigration impossibleunless the VM is powered off first.

Option A (VMs use a Volume Group) is incorrect:

Volume Groupssupport live migrationunless they are configured incorrectly.

Option C (VM-VM anti-affinity) is incorrect:

Anti-affinity rules prevent two specific VMs from running together, but do not prevent migration.

Option D (VMs use external NAS) is incorrect:

Using NAS does not block VM migration, as Nutanixsupports shared storage across hosts.

The LCM (Life Cycle Manager) precheck failures in this scenario indicate an inability to connect to vCenter to validate ESXi-specific checks, such as LACP configuration, HA, and pinned VMs. The appropriate log to analyze the details of the LCM precheck failures is the 1cm_ops.out log.

From theNutanix Enterprise Cloud Administration (ECA)course materials:

“The 1cm_ops.out log file contains detailed output and error information related to LCM operations, including prechecks, execution, and post-checks. This log is essential for troubleshooting LCM framework failures and understanding the root cause of any issues preventing upgrades.”

Understanding the Exhibit & Memory Allocation

Thehost has 128GB of physical RAM.

Thecurrent memory allocationacrossthree VMs (VM1, VM2, VM3) is 128GB, but only92GB is actually utilized.

This means there is36GB of unutilized memory available for allocation.

Step-by-Step Breakdown

Existing Memory Usage Before Adding VM4

Total Physical RAM:128GB

Used by running VMs (VM1, VM2, VM3):92GB

Unutilized Memory Available:36GB

After Creating and Running VM4

VM4 is allocatedmemory but only utilizes 28GB.

The table does not show VM4’s allocated RAM, but assuming it was given a reasonable allocation, it must have been taken from the36GB unutilized memory pool.

IfVM4 uses 28GB, theremaining unutilized memory is now (36GB - 28GB) = 8GB.

Maximum Memory Allocation for VM5

Sinceonly 8GB remains unutilized, the maximum memory VM5 can be allocated while still allowing it to power on is8GB.

Evaluating the Answer Choices

(A) 4GB❌(Incorrect)

More memory (8GB) is available, so limiting to 4GB is unnecessary.

(B) 8GB✅(Correct)

Theremaining unutilized memory after VM4 is 8GB, so VM5 can be allocated up to8GBwhile ensuring it can power on.

(C) 16GB❌(Incorrect)

Only8GB is left, so 16GB isnot possible.

(D) 32GB❌(Incorrect)

There isnot enough unutilized memoryto allocate 32GB.

Key Concept: Nutanix Memory Overcommit

Nutanix AHV supportsmemory overcommit, meaning VMs can be allocated more memory than physically available usingmemory ballooning and swapping.

However,to power on VM5 without impacting performance, it must fit within the available unutilized memory, which is8GB.

Receive Side Scaling (RSS) VirtIO-Net Multi-Queue improves network performance by distributing network processing across multiple CPU cores.

Option C (Enable RSS VirtIO-Net Multi-Queue) is correct:

This settingreduces CPU bottlenecksby allowing multiple queues to handle network packets.

It isessential for high-throughput network applications.

Option A (Add more vCPUs) is incorrect:

CPU resources are important, butwithout enabling RSS, additional vCPUs will not optimize network traffic distribution.

Option B (Enable AHV Turbo Technology) is incorrect:

AHV Turbo improvesdisk I/O, notnetwork I/O.

Option D (Add more RAM) is incorrect:

RAM does not directly impact network performance.

After a Prism Central upgrade, IAM authentication settings may require reconfiguration.

Option D (Log in with a local admin account) is correct:

If IAM authentication fails, thelocal admin account must be usedto check domain settings.

Option A (Ping the Domain Controller) is incorrect:

Network connectivity is important, but theissue is likely related to IAM settings, not network reachability.

Option B (Check firewall port 9441) is incorrect:

Port 9441 is used forSSO authentication, butport issues usually result in login delays, not complete failures.

Option C (Validate signing certificate) is incorrect:

While certificates can cause issues,local admin login should always work.

In Nutanix Prism Central, user-generated reports in Intelligent Operations are stored for a limited time and then deleted automatically.

Option C (Reports are automatically deleted after 24 hours) is correct:

Reportsdo not persist indefinitelyunless they arescheduled reports.

One-time reports expire after 24 hours.

Option A (Cluster Viewer deleted the report) is incorrect:

Cluster Viewerdoes not have permissions to delete reports.

Option B (Report was archived) is incorrect:

Nutanixdoes not automatically archive reports.

Option D (Report stored in Prism Element) is incorrect:

Reportsare generated and stored only in Prism Central, not Prism Element.

TheBully VMs List (Option C)in Prism Central’sIntelligent OperationsidentifiesVMs consuming excessive CPU, memory, or storage, which negatively affects other VMs.

Option A (Inactive VMs List)is used foridentifying unused VMsbut does not detect performance issues.

Option B (Overprovisioned VMs List)helps identifyVMs with excessive allocated resources, but it does not focus on live performance impact.

Option D (Constrained VMs List)highlightsVMs suffering from resource contention, not those causing it.

To ensureVM high availability (HA) in the event of a node failure, the administrator mustenable HA Reservation (Option B)in Prism Element.

High Availability (HA) in Nutanix ensures that VMs restart on another available node if the host they are running on fails.

Option A (Redundancy Factor 3)affectsstorage redundancy, not VM failover.

Option C (Protection Domains)is related todisaster recovery (DR), not local HA failover.

Option D (RF1 Storage Container)would reduce fault tolerance and is not recommended for production environments.

When Life Cycle Manager (LCM) reports thata newer framework version is available, thecorrect actionis toperform an inventory scan (Option C).

Performing an inventory scan updates the available firmware/software versionsand allows LCM to download required updates.

Option A (Run an AOS upgrade)is unrelated to the LCM framework update process.

Option B (Run an AHV upgrade)is a separate component update and does not affect the LCM framework.

Option D (Download manually from a CVM)is not necessary because LCM updates are automatically pulled after an inventory scan.

In Nutanix AHV-based clusters, when you want to ensure that a specific VM (e.g., a critical VM like a domain controller) is powered on before other VMs during a host startup or failover scenario, you use the Agent VM configuration setting.

Here’s the exact explanation from the Nutanix ECA course:

“Agent VMs are special VMs that are automatically powered on before other user VMs during host startup or recovery. This ensures that critical VMs, such as those that provide essential services, are always available first.”

In contrast:

✅Recovery Plan (A) — This is used in the context of DR and failover, typically with Nutanix Leap.

✅Host Affinity (B) — Host affinity rules control placement policies of VMs but not startup priority.

✅High Availability (C) — HA ensures VMs are restarted on surviving hosts but does not control startup order.

Therefore, setting the VM as an Agent VM guarantees that it is powered on before the other VMs during host start-up. Let me know if you’d like steps on how to configure an Agent VM within Prism Central or Prism Element!

Nutanix storage containers allow administrators to configure capacity reservations and advertised limits for better resource management.

Option D (Set Reserved Capacity to 10 GiB and Advertised Capacity to 500 GiB) is correct:

Reserved Capacityensures that10 GiB is always available for this container and not consumed by other containers.

Advertised Capacitydefines alogical limit of 500 GiBto prevent over-allocation.

Option A is incorrect:

Advertised Capacity of 10 GiB is too lowand does not match the requirement of a500 GiB storage container.

Option B is incorrect:

Only setting Advertised Capacity does not guarantee Reserved Capacity, meaning other containers could consume the reserved space.

Option C is incorrect:

Setting only Reserved Capacity does not enforce an upper limit, which could lead to overprovisioning.

Upgrading an AHV host with GPUs requires that the correct GPU drivers be manually uploaded to LCM, as GPU firmware is not updated automatically.

Option C (Use Direct Uploads to upload appropriate driver bundles) is correct:

LCM does notautomatically fetch GPU drivers.

The administrator mustdownload and manually upload the appropriate firmware bundlebefore upgrading.

Option A is incorrect:

Agent VMs are not requiredfor GPU updates.

Option B is incorrect:

Running LCM indark site mode does not impact GPU firmware updates.

Option D is incorrect:

Updating NCCis a best practice but does not resolve GPU driver issues.

The test_esx_entering_mm_pinned_vms check in an AOS upgrade validates whether there are any pinned VMs on ESXi hosts, which could prevent host maintenance mode transitions.

From theNutanix Enterprise Cloud Administration (ECA)course materials:

“Affinity or anti-affinity rules that pin VMs to specific hosts prevent those VMs from migrating during host maintenance mode entry. This directly triggers a failure in the LCM precheck test_esx_entering_mm_pinned_vms check.”

The Nutanix Life Cycle Manager (LCM) is designed to manage and automate firmware and software upgrades across Nutanix clusters. However, firmware upgrades via LCM are not supported for single-node clusters. This limitation is documented in the ECA course as well as in LCM’s official release notes and guides.

From the Nutanix Enterprise Cloud Administration (ECA) course materials:

“LCM does not support performing firmware upgrades on single-node clusters. These clusters require manual upgrades, and LCM will not list any available firmware updates for them, regardless of the firmware revision state.”

The other options:

A is incorrect; single-node clusters don’t have this limitation specifically for “one-disk” firmware upgrades—it’s a complete limitation for all firmware tasks in LCM.

B is misleading; LCM is supported in general for Nutanix clusters, just not for firmware tasks in single-node clusters.

D is incorrect because lack of internet connectivity would typically show an error related to download or connectivity issues, not complete absence of firmware updates.

The NCC alert indicates connectivity failure to the remote site. Resolving this involves confirming network connectivity and re-establishing the remote site configuration if necessary.

From theNutanix Enterprise Cloud Administration (ECA)course materials:

“The primary ports used for replication between clusters are 2009 (for Prism Element API) and 2020 (for data replication). Ensuring these ports are open and reachable is critical for remote site connectivity.”

Also:

“If the remote site has been re-imaged or reconfigured, it may have a new cluster incarnation ID. In such cases, the remote site configuration must be recreated to align with the current cluster information.”

Steps like checking ping with MTU 9000 (D) are not directly related to remote site connectivity for replication, and NAT configurations (B) are generally not recommended unless explicitly required.

By default, Nutanix Prism Central retains the last 10 instances of a report if no retention policy is configured.

Option B (10) is correct:

Nutanixstores up to 10 reports, after which older reports areautomatically deleted.

Options A (5), C (15), and D (20) are incorrect:

Whileretention policies can be customized, thedefault setting is 10 reports.