Free HashiCorp VA-002-P Exam Questions

Become HashiCorp Certified with updated VA-002-P exam questions and correct answers

Page: 1 / 66

Total 328 Questions | Updated On: Nov 21, 2024

Add To Cart

Question 1

If Bobby is currently assigned the following policy, what additional policy can be added to ensure Bobby cannot access the data stored at secret/apps/confidential but still read all other secrets?

path "secret/apps/*" {

capabilities = ["create", "read", "update", "delete", "list"]

}

A : path "secret/apps/confidential" { capabilities = ["deny"]}

B : path "secret/*" { capabilities = ["read", "deny"]}

C : path "secret/apps/*" { capabilities = ["deny"]}

D : path "secret/apps/confidential/*" { capabilities = ["deny"]}

Answer: A

Question 2

You've hit the URL for the Vault UI, but you're presented with this screen. Why doesn't Vault present you with a way to log in?

A : consul storage backend was not configured correctly

B : the vault configuration file has an incorrect configuration

C : ult needs to be initialized before it can be used

D : Vault policy is preventing you from logging in

Answer: C

Question 3

How can Vault be used to programmatically obtain a generated code for MFA, somewhat similar to Google Authenticator?

A : bbyhole

B : identity secrets engine

C : TP secrets engine

D : random byte generator

Answer: C

Question 4

Your organization uses a CI/CD pipeline to deploy its applications on Azure. During testing, you generate new credentials to validate Vault can create new credentials. The result of this command is below:

$ vault read azure/creds/bryan-krausen

Key Value

--- -----

lease_id azure/creds/bryan-krausen/9eed0373-ca92-99b6-b914-779b7bb0e1d9

lease_duration 60m

lease_renewable true

client_id 532bf678-ee4e-6be1-116b-4e4221e445dd

client_secret be60395b-4e6b-2b7e-a4b3-c449a5c00973

What commands can be used to revoke this secret after you have finished testing? (select three)

A : ult lease revoke -prefix azure/creds/bryan-krausen

B : ult lease revoke azure/creds/bryan-krausen

C : ult lease revoke azure/

D : ult lease revoke -prefix azure/

E : ult lease revoke azure/creds/bryan-krausen/9eed0373-ca92-99b6-b914-779b7bb0e1d9

Answer: A,D

Question 5

Which of the following are considered benefits of using policies in Vault? (select three)

A : ovides granular access control to paths within Vault

B : licies have an implicit deny, meaning that policies are deny by default

C : licies provide Vault operators with role-based access control

D : licies are assigned to a token on a 1:1 basis to eliminate conflicting policies

Answer: A,B,C

Page: 1 / 66

Total 328 Questions | Updated On: Nov 21, 2024

Add To Cart