NetApp Certified Hybrid Cloud Administrator (NS0-303 exam) - Notes

on

 
This blog post is split into 3 sections.

1) Recommended Preparation (from www.netapp.com)
2) Preparation
3) Notes on the Exam

1) Recommended Preparation

https://www.netapp.com/support-and-training/netapp-university-training-and-certification/certification/cloud-administrator/


2) Preparation

There are a couple of ILT training courses (a 3 day hybrid cloud and an SG one) recommended as part of the training before taking the exam. If you have actual HCI or SG experience you should get by with just doing all of the recommended web based training.

Read the cloud manager documentation in full (should only take about 2 hours). Watch YouTube videos on:


And then a 2.5 hour video on HCI (if you've not done any HCI):
https://www.youtube.com/watch?v=Y0ZUu92xwf8

3) Notes on the Exam

The pass mark is only 60%!

HCI:
Lots of questions around this (deployments, troubleshooting, upgrades.)
Question on how to deploy file services (ONTAP select) and a replication question (from HCI to object)

Cloud Manager:
Remember upgrades of CVO are performed by Cloud Manager. Cloud Manager (referred to as the Connector and in the exam) sits out of any data path – control plane only – one question on how to recover it – restore the 7z onto a new one or just re-discover everything.

CVO:
Mostly AWS/Azure (not much on GCP). Mainly deployment, upgrades, troubleshooting. Minimum number of floating IPs for AWS CVO. One GCP specific question on troubleshooting a network connectivity issue in some sort of private router configuration.

One floating IP address is for cluster management, one is for NFS/CIFS data on node 1, and one is for NFS/CIFS data on node 2. A fourth floating IP address for SVM management is optional.

CVS/ANF:
A few questions. What protocols are supported (NFS/SMB), different policies/cooling off period etc. (snapshot only 2 days, auto 31 days – check!) Multi protocol – basically you select multi-protocol at provisioning time for the volume – don’t think you can modify later. CVS service levels.


Fabric Pool:
Aggregate/Volume must have tiering enabled and policy assigned, licensing, etcetera.
Understand the different policies, the cooling period possible (9.5) and that intercluster LIF is used to move data.

SPOT:
A few questions. Check out the web-based training and Cloud Manager documentation: https://docs.netapp.com/us-en/occm/

StorageGRID:
Question around replication / AWS S3. What happens when two clients try to update same object.

"Conflicting client requests, such as two clients writing to the same key, are resolved on a "latest-wins" basis. The timing for the "latest-wins"evaluation is based on when the StorageGRID system completes a given request, and not on when S3 clients begin an operation."

SaaS:
One question around if you change to Bring Your Own Storage license and you cant see your previously backed up data why that is?

More notes:
It mentions NDAS once which is dead a while – it was about the component that copies the data from the ONTAP proxy up to S3 object storage.
Conceptually know basic components needed for AWS <-> Azure connectivity or on premise to cloud connectivity.
Components in the network path when things aren’t working cloud related (security groups, NSGs).
Only two container specific questions (Trident.)
Cloudsync – one specific question on what destinations you can copy from CIFS to.


Knowledge Checks and Practice Questions Answers

Cloud Manager

Q: Which statement is true regarding data-at-rest encryption for Cloud Volumes ONTAP software in Microsoft Azure?
A: Azure Storage Service Encryption is enabled by default.

Q: Cloud Volumes ONTAP HA for Amazon Web Services (AWS) provides nondisruptive operations and fault tolerance of NAS workloads by which capability?
A: Synchronous replication between the two Cloud Volumes ONTAP nodes.

Q: Which two licensing choices are available for Cloud Volumes ONTAP systems? (Choose two.)
A1: Pay as you go (PAYGO)
A2: Bring your own license (BYOL)

Q: To create a Cloud Volumes ONTAP for AWS instance, Cloud Manager must also be running in AWS.
A: False

Q: Which statement is true about the use of APIs?
A: APIs can be used instead of the Cloud Manager UI.

Q: You can run Cloud Manager from the cloud or from your data center?
A: True

Q: After a Cloud Volumes ONTAP instance has been created, you use Cloud Manager to create which two resources? (Choose two.)
A1: LUN
A2: Volume

Q: Which replication policy is primarily used for disaster recovery?
A: Mirror policy

Q: The volume tiering policy cannot be changed on a replicated volume after the relationship has been created.
A: True.

Cloud Volumes ONTAP Fundamentals

Q1: Which disk type is used for the Cloud Volumes ONTAP for Azure high-availability (HA) configuration?
A: Premium Page Blobs.

Q2: How are storage systems represented in Cloud Manager?
A: Working environments.

Q3: Which two items can be activated in the Ransomware protection feature? (Choose two.)
A1: FPolicy
A2: Snapshot Policy

Q4: Cloud Volumes ONTAP High Availability (HA) for AWS using multiple availability zones provides nondisruptive operations and fault tolerance of NAS workloads by using which of the following?
A: Floating IP addresses.

Q5: Which statement is true regarding deploying and managing a Cloud Volumes ONTAP for AWS instance using Cloud Manager?
A: Cloud manager can be running in AWS, Azure or your own network to deploy or manage a Cloud Volumes ONTAP for AWS instance.

Q6: Before Cloud MAnager running in AWS can discover a Cloud Volumes ONTAP for Azure instance, what two items must be configured? (Choose two.)
A1: The correct permissions on Azure.
A2: VPN connectivity to Azure.

Q7: In Cloud Manager which menu link do you access to add a new aggregate to a current work environment?
A: Advanced allocation.

Q8: When adding a new volume to a working environment, which three volume tiering policies are available? (Choose three.)
A1: None
A2: Auto
A3: Snapshot only

Q9: Which statement is true regarding replication relationships?
A: Replication relationships can be crated between Cloud Volumes ONTAP instances from different cloud providers.

Q10: Which replication policy type used the same retention policy on both the source and destination volumes?
A: Mirror

NS0-303 Practice Test

Q1: You have a cloud-connected storage system that is located in a colocation facility that uses a direct connect to AWS. The direct connect circuit is already configured, and it is working for the SVMs that were created earlier on the cluster. You are creating a new SVM on the storage cluster in your colocation. You want your compute nodes in AWS to be able to connect to the storage on the newly created SVM.
Which two steps must you perform to accomplish this task? (Choose two.)
A1: Create the protocol LIFs on the SVM that uses the VLAN interface ports.
A2: Create VLAN interface ports on cluster nodes.

Q2: Which hypervisor would be deployed using the NetApp Deployment Engine?
A: VMware vSphere.

Q3:What are two requirements when using SaaS-based NetApp Cloud Manager to deploy an instance of Cloud Volumes ONTAP? (Choose two.)
A1: An account administrator needs to deploy it.
A2: A NetApp Connector in your cloud or an on-premises network is required.
Roles: https://docs.netapp.com/us-en/occm/reference_user_roles.html
Cloud Manager Roles: Account Admin, Workspace Admin, Cloud Compliance Viewer, SnapCenter Admin.

Q4: You are provisioning a single node NetApp Cloud Volumes ONTAP instance in the public cloud. In this scenario, which two LIFs are configured by Cloud Manager by default? (Choose two.)
A1: Cluster Management LIF
A2: Intercluster LIF

Q5: Which two storage protocols are supported by Cloud Volumes Service? (Choose two.)
A1: NFS v3
A2: SMB 3.0

Q6: You have a 100TB Cloud Volumes Service NFS volume called vol1. You are asked to create a second read/write test copy of the volume called vol1_test.
In this scenario, what is the fastest supported method to create vol1_test?
A: Create vol1_test from a Snapshot copy.

Q7: You are an administrator of your NetApp Cloud Volumes ONTAP system in AWS. You want to tier backup data from the data protection volumes in your system to object storage to lower costs. You are aware that some of the requirements for data tiering are not met automatically by NetApp Cloud Manager.
In this scenario, which two criteria must be satisfied before enabling tiering from NetApp Cloud Manager? (Choose two.)
A1: Ensure that you have internal connectivity using the VPC endpoint to the Amazon S3 service.
A2: Ensure that you have tiering enabled on the aggregate in which your data protection volume exists.
See: https://docs.netapp.com/us-en/occm/task_tiering.html
For AWS, you'll need a VPC Endpoint to S3
Ensure that you have an aggregate with tiering enabled.

Q8: Your organization's security policy requires centrally managed user rights with granular permission assignment capabilities for authenticated users to access the Spot by NetApp console.
Which method accomplishes this task?
A: Configure integration with your organization's single sign-on (SSO).

Q9: You are managing a large NetApp hybrid cloud estate across your business and are experiencing VM performance problems. You are asked to investigate. You need a tool that provides monitoring capabilities and enables you to solve specific issues quickly.
Which NetApp tool would you deploy to satisfy these requirements?
A: NetApp Cloud Insights

Q10: You are experiencing slow database queries from a compute instance running a relational database on Azure NetApp Files.
In this scenario, what are three reasons for this issue? (Choose three.)
A1: The size of the compute instance.
A2: The automatic QoS quota size of the Azure NetApp Files volume.
A3: A manual QoS throughput setting of the Azure NetApp Files volume.


APPENDIX: Useful Diagrams

Image 1: Azure Networking Components in Action


Image 2: Azure Networking Components


Image 3: GCP Products (services) and resource relationship


Image 4: NetApp Public Cloud Services (early 2021)


Comments

Post a Comment