Free Linux Foundation Kyverno-Certified-Associate Exam Questions

Become Linux Foundation Certified with updated Kyverno-Certified-Associate exam questions and correct answers

Page: 1 / 60

Total 299 Questions | Updated On: Sep 10, 2025

Add To Cart

Question 1

What precaution should be taken to ensure the availability of dynamic admission controllers in Kubernetes?

A : Allowing webhooks to include the controller's own namespace

B : Configuring multiple replicas of the controller

C : Deploying the controller in the default namespace

D : Setting resource limits to minimal values

Answer: B

Question 2

Which security best practice is implemented in Kyverno Pods to enhance their security posture?

A : Privileged mode is enabled.

B : runAsRoot is set to true.

C : All capabilities are retained.

D : allowPrivilegeEscalation is set to false.

Answer: D

Question 3

If you discover a potential security vulnerability in Kyverno, which method should you use to report it to the Kyverno security team?

A : Send an email to kyverno-security@googlegroups.com with detailed information.

B : Open a public issue on the Kyverno GitHub repository.

C : Post a message on Kyverno's Slack channel.

D : Submit a form on the Cloud Native Computing Foundation website.

Answer: A

Question 4

What is the role of 'validationFailureAction: Enforce' in a Kyverno policy?

A : It only logs validation failures without blocking resource creation.

B : It ignores validation failures and allows resource creation.

C : It automatically fixes validation failures to comply with the policy.

D : It blocks resource creation if validation fails.

Answer: D

Question 5

Which security best practice is implemented in Kyverno Pods to enhance their security posture?

A : Privileged mode is enabled.

B : runAsRoot is set to true.

C : All capabilities are retained.

D : allowPrivilegeEscalation is set to false.

Answer: D

Page: 1 / 60

Total 299 Questions | Updated On: Sep 10, 2025

Add To Cart