Create Next App

hashicorp VAULT_ASSOCIATE_002

Exam contains 93 questions

Page 3 of 16

Question 13 🔥

The following three policies exist in Vault What do these policies allow an organization to do? app.hclcallcenter.hclrewrap.hcl

Which database solution meets these requirements?

A. Separates permissions allowed on actions associated with the transit secret engine

Highly voted

B. Nothing, as the minimum permissions to perform useful tasks are not present

Highly voted

C. Encrypt decrypt, and rewrap data using the transit engine all in one policy

Highly voted

D. Create a transit encryption key for encrypting, decrypting, and rewrapping encrypted data

Highly voted

Discussion of the question

Question 14 🔥

Your DevOps team would like to provision VMs in GCP via a CICD pipeline. They would like to integrate Vault to protect the credentials used by the tool. Which secrets engine would you recommend?

Which database solution meets these requirements?

A. Google Cloud Secrets Engine

Highly voted

B. Identity secrets engine

Highly voted

C. Key/Value secrets engine version 2

Highly voted

D. SSH secrets engine

Highly voted

Discussion of the question

Question 15 🔥

Which of these is not a benefit of dynamic secrets?

Which database solution meets these requirements?

A. Supports systems which do not natively provide a method of expiring credentials

Highly voted

B. Minimizes damage of credentials leaking

Highly voted

C. Ensures that administrators can see every password used

Highly voted

D. Replaces cumbersome password rotation tools and practices

Highly voted

Discussion of the question

Question 16 🔥

Which of the following cannot define the maximum time-to-live (TTL) for a token?

Which database solution meets these requirements?

A. By the authentication method

Highly voted

B. By the client system

Highly voted

C. By the mount endpoint configuration

Highly voted

D. A parent token TTL

Highly voted

E. System max TTL

Highly voted

Discussion of the question

Question 17 🔥

What are orphan tokens?

Which database solution meets these requirements?

A. Orphan tokens are tokens with a use limit so you can set the number of uses when you create them

Highly voted

B. Orphan tokens are not children of their parent; therefore, orphan tokens do not expire when their parent does

Highly voted

C. Orphan tokens are tokens with no policies attached

Highly voted

D. Orphan tokens do not expire when their own max TTL is reached

Highly voted

Discussion of the question

Question 18 🔥

You are using the Vault userpass auth method mounted at auth/userpass. How do you create a new user named "sally" with password "h0wN0wB4r0wnC0w"? This new user will need the power-users policy.

Which database solution meets these requirements?

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

hashicorp VAULT_ASSOCIATE_002

Exam contains 93 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us