An administrator must create amulti - zone vSphere Supervisor deployment in a VMware Cloud Foundation (VCF) environment. What is the primary purpose of this configuration?

An administrator runs several critical workloads on vSphere Kubernetes Service (VKS). An audit identified an outdated container image with a known CVE that exposed internal APIs to unauthorized access. To mitigate this risk and enhance image security, the administrator enabled Harbor as a Supervisor Service. Which two Harbor registry capabilities help the organization prevent a recurrence of this type of security incident? (Choose two.)

A company standardized on the following configurations • vSphere Kubernetes Service (VKS) upgrade is separate from vCenter upgrades. • A private registry will be utilized. How should an administrator adhere to these standards?

An administrator is deploying vSphere Kubernetes Service (VKS) to support containerized workloads across multiple regions. Each region hosts a dedicated Workload Domain with Supervisor instances deployed on vSphere Distributed Switch (VDS) networking. The organization’s security policy requires that pod - to - pod and pod - to - service communications be fully observable and controllable at the Kubernetes layer, without introducing additional licensing or overlay complexity. When deploying a Supervisor, which CNI should the administrator select as the default supported option?

What tool can be used to back up and restore workloads on clusters provisioned by vSphere Supervisor?