HashiCorp VA-002-P HashiCorp Certified: Vault Associate Online Training
HashiCorp VA-002-P Online Training
The questions for VA-002-P were last updated at Nov 19,2024.
- Exam Code: VA-002-P
- Exam Name: HashiCorp Certified: Vault Associate
- Certification Provider: HashiCorp
- Latest update: Nov 19,2024
You are using the Vault userpass auth method mounted at auth/userpass.
How do you create a new user named "sally" with password "h0wN0wB4r0wnC0w"? This new user will need the power-users policy.
A)
B)
C)
D)
- A . Option A
- B . Option B
- C . Option C
- D . Option D
The vault lease renew command increments the lease time from:
- A . The current time
- B . The end of the lease
HOTSPOT
Where do you define the Namespace to log into using the Vault Ul?
To answer this question
Use your mouse to click on the screenshot in the location described above. An arrow indicator will mark where you have clicked. Click the "Answer" button once you have positioned the arrow to answer the question. You may need to scroll down to see the entire screenshot.
You have a 2GB Base64 binary large object (blob) that needs to be encrypted.
Which of the following best describes the transit secrets engine?
- A . A data key encrypts the blob locally, and the same key decrypts the blob locally.
- B . To process such a large blob. Vault will temporarily store it in the storage backend.
- C . Vault will store the blob permanently. Be sure to run Vault on a compute optimized machine
- D . The transit engine is not a good solution for binaries of this size.
How would you describe the value of using the Vault transit secrets engine?
- A . Vault has an API that can be programmatically consumed by applications
- B . The transit secrets engine ensures encryption in-transit and at-rest is enforced enterprise wide
- C . Encryption for application data is best handled by a storage system or database engine, while storing encryption keys in Vault
- D . The transit secrets engine relieves the burden of proper encryption/decryption from application developers and pushes the burden onto the operators of Vault
What is the Vault CLI command to query information about the token the client is currently using?
- A . vault lookup token
- B . vault token lookup
- C . vault lookup self
- D . vault self-lookup
Which of the following is a machine-oriented Vault authentication backend?
- A . Okta
- B . AppRole
- C . Transit
- D . GitHub
Security requirements demand that no secrets appear in the shell history.
Which command does not meet this requirement?
- A . generate-password | vault kv put secret/password value
- B . vault kv put secret/password value-itsasecret
- C . vault kv put secret/password [email protected]
- D . vault kv put secret/password value-SSECRET_VALUE
You can build a high availability Vault cluster with any storage backend.
- A . True
- B . False
What command creates a secret with the key "my-password" and the value "53cr3t" at path "my-secrets" within the KV secrets engine mounted at "secret"?
- A . vault kv put secret/my-secrets/my-password 53cr3t
- B . vault kv write secret/my-secrets/my-password 53cr3t
- C . vault kv write 53cr3t my-secrets/my-password
- D . vault kv put secret/my-secrets »y-password-53cr3t
Latest VA-002-P Dumps Valid Version with 200 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
