ExamGecko
Search Search Login
Home Home / HashiCorp / Terraform Associate 003
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

How is terraform import run?
If a module declares a variable with a default, that variable must also be defined within the module.
Which type of block fetches or computes information for use elsewhere in a Terraform configuration?
Which of the following is not a key principle of infrastructure as code?
Which backend does the Terraform CU use by default?
If a DevOps team adopts AWS CloudFormation as their standardized method for provisioning public cloud resoruces, which of the following scenarios poses a challenge for this team?
Terraform providers are part of the Terraform core binary.
A developer on your team is going lo leaf down an existing deployment managed by Terraform and deploy a new one. However, there is a server resource named aws instant.ubuntu[l] they would like to keep. What command should they use to tell Terraform to stop managing that specific resource?
You should run terraform fnt to rewrite all Terraform configurations within the current working directory to conform to Terraform-style conventions.
What is one disadvantage of using dynamic blocks in Terraform?

Question 64 - Terraform Associate 003 discussion

Report
Export

Which provider authentication method prevents credentials from being stored in the state file?

A.
Using environment variables
Answers
A.
Using environment variables
B.
Specifying the login credentials in the provider block
Answers
B.
Specifying the login credentials in the provider block
C.
Setting credentials as Terraform variables
Answers
C.
Setting credentials as Terraform variables
D.
None of the above
Answers
D.
None of the above
Suggested answer: D

Explanation:

None of the above methods prevent credentials from being stored in the state file. Terraform stores the provider configuration in the state file, which may include sensitive information such as credentials. This is a potential security risk and should be avoided if possible. To prevent credentials from being stored in the state file, you can use one of the following methods:

Use environment variables to pass credentials to the provider. This way, the credentials are not part of the provider configuration and are not stored in the state file. However, this method may not work for some providers that require credentials to be set in the provider block.

Use dynamic credentials to authenticate with your cloud provider. This way, Terraform Cloud or Enterprise will request temporary credentials from your cloud provider for each run and use them to provision your resources. The credentials are not stored in the state file and are revoked after the run is completed. This method is supported for AWS, Google Cloud Platform, Azure, and Vault.Reference= : [Sensitive Values in State] :Authenticate providers with dynamic credentials

Show Answer
asked 18/09/2024
Vojtech Danek
38 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms