ExamGecko
Search Search Login
Home Home / Docker / DCA
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Will this command display a list of volumes for a specific container? Solution. 'docker container logs nginx --volumes'
The Kubernetes yaml shown below describes a clusterIP service. Is this a correct statement about how this service routes requests? Solution: Traffic sent to the IP of this service on port 8080 will be routed to port 80 in a random pod with the label aPP: nginx.
The Kubernetes yaml shown below describes a networkPolicy. Will the networkPolicy BLOCK this traffic? Solution: a request issued from a pod lacking the tier: api label, to a pod bearing the tier: backend label
Does this command create a swarm service that only listens on port 53 using the UDP protocol? Solution. 'docker service create -name dns-cache -p 53:53 -constraint networking.protocol.udp=true dns-cache'
Will this command list all nodes in a swarm cluster from the command line? Solution. 'docker inspect nodes
Is this a supported user authentication method for Universal Control Plane? Solution. x.500
Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate? Solution. Set INSECURE_REGISTRY in the' /etc/docker/default' configuration file.
A Kubernetes node is allocated a /26 CIDR block (64 unique IPs) for its address space. If every pod on this node has exactly two containers in it, how many pods can this address space support on this node?
A user's attempts to set the system time from inside a Docker container are unsuccessful. Could this be blocking this operation? Solution. SELinux
Will this command display a list of volumes for a specific container? Solution: docker volume inspect nginx'

Question 111 - DCA discussion

Report
Export

Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate?

Solution. Set INSECURE_REGISTRY in the' /etc/docker/default' configuration file.

A.

Yes

Answers
A.

Yes

B.

No

Answers
B.

No

Suggested answer: A

Explanation:

= Setting INSECURE_REGISTRY in the /etc/docker/default configuration file is one way to configure the Docker engine to use a registry without a trusted TLS certificate.This option tells the Docker daemon to accept insecure connections to the specified registry, bypassing the certificate verification1.However, this method is not recommended, as it exposes the registry and the Docker engine to potential security risks2.A better way to use a registry without a trusted TLS certificate is to add the registry's CA certificate to the Docker daemon's trust store, as described in the Docker documentation3or other online guides4.Reference:

1: How to build docker registry without SSL

2: Verify repository client with certificates | Docker Docs

3: ''docker pull'' certificate signed by unknown authority

4: Login to docker registry with client certificate under windows

Show Answer
asked 08/11/2024
Benice dobbins
44 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms