ExamGecko
Login
Home / HashiCorp / Vault Associate 002 / List of questions
Ask Question

HashiCorp Vault Associate 002 Practice Test - Questions Answers, Page 4

List of questions

Question 31

Report Export Collapse

Your organization has an initiative to reduce and ultimately remove the use of long lived X.509 certificates. Which secrets engine will best support this use case?

Become a Premium Member for full access
  Unlock Premium Member

Question 32

Report Export Collapse

When unsealing Vault, each Shamir unseal key should be entered:

Become a Premium Member for full access
  Unlock Premium Member

Question 33

Report Export Collapse

As a best practice, the root token should be stored in which of the following ways?

Become a Premium Member for full access
  Unlock Premium Member

Question 34

Report Export Collapse

When creating a policy, an error was thrown:

HashiCorp Vault Associate 002 image Question 34 30648 09182024192100000000

Which statement describes the fix for this issue?

Become a Premium Member for full access
  Unlock Premium Member

Question 35

Report Export Collapse

Where can you set the Vault seal configuration? Choose two correct answers.

Become a Premium Member for full access
  Unlock Premium Member

Question 36

Report Export Collapse

Which of the following vault lease operations uses a lease _ id as an argument? Choose two correct answers.

Become a Premium Member for full access
  Unlock Premium Member

Question 37

Report Export Collapse

An organization wants to authenticate an AWS EC2 virtual machine with Vault to access a dynamic database secret. The only authentication method which they can use in this case is AWS.

Become a Premium Member for full access
  Unlock Premium Member

Question 38

Report Export Collapse

You are using Vault's Transit secrets engine to encrypt your dat

a. You want to reduce the amount of content encrypted with a single key in case the key gets compromised. How would you do this?

Become a Premium Member for full access
  Unlock Premium Member

Question 39

Report Export Collapse

A user issues the following cURL command to encrypt data using the transit engine and the Vault AP:

HashiCorp Vault Associate 002 image Question 39 30653 09182024192100000000

Which payload.json file has the correct contents?

Become a Premium Member for full access
  Unlock Premium Member

Question 40

Report Export Collapse

An authentication method should be selected for a use case based on:

Become a Premium Member for full access
  Unlock Premium Member
Total 57 questions
Go to page: of 6
Open VPLUS File
Convert VPLUS to PDF

Related questions

You have been tasked with writing a policy that will allow read permissions for all secrets at path secret/bar. The users that are assigned this policy should also be able to list the secrets. What should this policy look like?
A developer mistakenly committed code that contained AWS S3 credentials into a public repository. You have been tasked with revoking the AWS S3 credential that was in the code. This credential was created using Vault's AWS secrets engine and the developer received the following output when requesting a credential from Vault. Which Vault command will revoke the lease and remove the credential from AWS?
Use this screenshot to answer the question below: Where on this page would you click to view a secret located at secret/my-secret?
A user issues the following cURL command to encrypt data using the transit engine and the Vault AP: Which payload.json file has the correct contents?
An authentication method should be selected for a use case based on:
What can be used to limit the scope of a credential breach?
What does the following policy do?
Which statement describes the results of this command: $ vault secrets enable transit
Where does the Vault Agent store its cache?
Which of these is not a benefit of dynamic secrets?