Data-in-Transit Encryption ensures that replication traffic is encrypted while being sent over the internet.
* Option D (Enable Data-in-Transit Encryption) is correct:
* This encryptsreplicated data between clusters, ensuring security againstman-in-the-middle attacks.
* Option A (Self-encrypting drive) is incorrect:
* This protects data at rest, not during transmission.
* Option B (UEFI Secure Boot) is incorrect:
* Secure Boot prevents unauthorized OS modifications, but doesnot encrypt network traffic.
* Option C (Data-at-Rest Encryption) is incorrect:
* This encryptsstored data but does not secure replication traffic.
References:
* Nutanix Security Guide #Configuring Data-in-Transit Encryption
* Nutanix KB #Protecting Replication Traffic Over Public Networks