Please Answer Questions Follow The Prompts Below
}A . anything they want to within VaultB . ability to enable a secret engine at the path *C . only make changes to policiesD . nothing, since the policy doesn't specify any specific pathsView AnswerAnswer: A Explanation: All interactions with Vault are done through its pathing structure. If you...
Unsealing Vault creates the encryption keys, which is used to unencrypt the data on the storage backend.
Unsealing Vault creates the encryption keys, which is used to unencrypt the data on the storage backend.A . FALSEB . TRUEView AnswerAnswer: A Explanation: Unsealing is the process of obtaining the plaintext master key necessary to read the decryption key to decrypt the data, allowing access to the Vault. The...
What does this infer?
After executing a terraform apply, you notice that a resource has a tilde (~) next to it. What does this infer?A . the resource will be destroyed and recreatedB . the resource will be createdC . Terraform can't determine how to proceed due to a problem with the state fileD...
Please Answer Questions Follow The Prompts Below
}A . The EC2 instance labeled web_serverB . The EIP with an id of ami-2757f631C . The AMI used for the EC2 instanceD . The S3 bucket labeled company_dataView AnswerAnswer: A Explanation: The EC2 instance labeled web_server is the implicit dependency as the aws_eip cannot be created until the aws_instance...
What feature of a Vault policy can be used in order to restrict the entry to the required values?
An application requires a specific key/value to be updated in order to process a batch job. The value should be either "true" or "false". However, when developers have been updating the value, sometimes they mistype the value or capitalize on the value, causing the batch job not to run. What...
Given the following screenshot, how many secrets engines have been enabled?
Given the following screenshot, how many secrets engines have been enabled? A . 4B . 3C . 5D . 2View AnswerAnswer: B Explanation: The Cubbyhole secret engine is a default secrets engine that is enabled by default for each Vault user.
True or False:
True or False: When using the transit secrets engine, setting the min_decryption_version will determine the minimum key length of the data key (i.e., 2048, 4096, etc.)A . FalseB . TrueView AnswerAnswer: A Explanation: The Transit engine supports the versioning of keys. Key versions that are earlier than a key's specified...
What feature could you use to iterate over a list of required tcp ports to add to the new security group?
You have been given requirements to create a security group for a new application. Since your organization standardizes on Terraform, you want to add this new security group with the fewest number of lines of code. What feature could you use to iterate over a list of required tcp ports...
What happened?
You've set up multiple Vault clusters, one on-premises which is intended to be the primary cluster, and the second cluster in AWS, which was deployed to be used for performance replication. After enabling replication, developers complain that all the data they've stored in the AWS Vault cluster is missing. What...
When using providers that require the retrieval of data, such as the HashiCorp Vault provider, in what phase does Terraform actually retrieve the data required?
When using providers that require the retrieval of data, such as the HashiCorp Vault provider, in what phase does Terraform actually retrieve the data required?A . terraform applyB . terraform planC . terraform initD . terraform deleteView AnswerAnswer: B Explanation: It is important to consider that Terraform reads from data...