Summer Special Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 713PS592

Vault-Associate HashiCorp Certified: Vault Associate (002) Questions and Answers

Questions 4

Running the second command in the GUI CLI will succeed.

Vault-Associate Question 4

Options:

A.

True

B.

False

Buy Now
Questions 5

To make an authenticated request via the Vault HTTP API, which header would you use?

Options:

A.

The X-Vault-Token HTTP Header

B.

The x-Vault-Request HTTP Header

C.

The Content-Type HTTP Header

D.

The X-Vault-Namespace HTTP Header

Buy Now
Questions 6

An authentication method should be selected for a use case based on:

Options:

A.

The auth method that best establishes the identity of the client

B.

The cloud provider for which the client is located on

C.

The strongest available cryptographic hash for the use case

D.

Compatibility with the secret engine which is to be used

Buy Now
Questions 7

When an auth method is disabled all users authenticated via that method lose access.

Options:

A.

True

B.

False

Buy Now
Questions 8

Which of the following cannot define the maximum time-to-live (TTL) for a token?

Options:

A.

By the authentication method t natively provide a method of expiring credentials

B.

By the client system f credentials leaking

C.

By the mount endpoint configurationvery password used

D.

A parent token TTL e password rotation tools and practices

E.

System max TTL

Buy Now
Questions 9

Which of the following vault lease operations uses a lease_id as an argument? Choose two correct answers.

Options:

A.

renew

B.

revoke -prefix

C.

create

D.

describe

E.

revoke

Buy Now
Questions 10

Examine the command below. Output has been trimmed.

Vault-Associate Question 10

Which of the following statements describe the command and its output?

Options:

A.

Missing a default token policy

B.

Generated token's TTL is 60 hours

C.

Generated token is an orphan token which can be renewed indefinitely

D.

Configures the AppRole auth method with user specified role ID and secret ID

Buy Now
Questions 11

Security requirements demand that no secrets appear in the shell history. Which command does not meet this requirement?

Options:

A.

generate-password | vault kv put secret/password value

B.

vault kv put secret/password value-itsasecret

C.

vault kv put secret/password value=@data.txt

D.

vault kv put secret/password value-SSECRET_VALUE

Buy Now
Questions 12

What is the Vault CLI command to query information about the token the client is currently using?

Options:

A.

vault lookup token

B.

vault token lookup

C.

vault lookup self

D.

vault self-lookup

Buy Now
Questions 13

Where can you set the Vault seal configuration? Choose two correct answers.

Options:

A.

Cloud Provider KMS

B.

Vault CLI

C.

Vault configuration file

D.

Environment variables

E.

Vault API

Buy Now
Questions 14

Where does the Vault Agent store its cache?

Options:

A.

In a file encrypted using the Vault transit secret engine

B.

In the Vault key/value store

C.

In an unencrypted file

D.

In memory

Buy Now
Questions 15

You are using the Vault userpass auth method mounted at auth/userpass. How do you create a new user named "sally" with password "h0wN0wB4r0wnC0w"? This new user will need the power-users policy.

Options:

A.

Vault-Associate Question 15 Option 1

B.

15

C.

15

D.

15

Buy Now
Questions 16

What command creates a secret with the key "my-password" and the value "53cr3t" at path "my-secrets" within the KV secrets engine mounted at "secret"?

Options:

A.

vault kv put secret/my-secrets/my-password 53cr3t

B.

vault kv write secret/my-secrets/my-password 53cr3t

C.

vault kv write 53cr3t my-secrets/my-password

D.

vault kv put secret/my-secrets »y-password-53cr3t

Buy Now
Questions 17

Which statement describes the results of this command: $ vault secrets enable transit

Options:

A.

Enables the transit secrets engine at transit path

B.

Requires a root token to execute the command successfully

C.

Enables the transit secrets engine at secret path

D.

Fails due to missing -path parameter

E.

Fails because the transit secrets engine is enabled by default

Buy Now
Exam Code: Vault-Associate
Exam Name: HashiCorp Certified: Vault Associate (002)
Last Update: May 22, 2024
Questions: 57

PDF + Testing Engine

$66.4  $165.99

Testing Engine

$46  $114.99
buy now Vault-Associate testing engine

PDF (Q&A)

$42  $104.99
buy now Vault-Associate pdf