Page: 1
/ 19
Total 93 questions
You are using the Vault userpass auth method mounted at auth/userpass. How do you create a new user named "sally" with password "h0wN0wB4r0wnC0w"? This new user will need the power-users policy.
-
A.
-
B.
-
C.
-
D.
Answer : D
The vault lease renew command increments the lease time from:
- A. The current time
- B. The end of the lease
Answer : A
HOTSPOT -
Where do you define the Namespace to log into using the Vault UI?
To answer this question -
Use your mouse to click on the screenshot in the location described above. An arrow indicator will mark where you have clicked. Click the "Answer” button once you have positioned the arrow to answer the question. You may need to scroll down to see the entire screenshot.
Answer :
You have a 2GB Base64 binary large object (blob) that needs to be encrypted. Which of the following best describes the transit secrets engine?
- A. A data key encrypts the blob locally, and the same key decrypts the blob locally.
- B. To process such a large blob. Vault will temporarily store it in the storage backend.
- C. Vault will store the blob permanently. Be sure to run Vault on a compute optimized machine.
- D. The transit engine is not a good solution for binaries of this size.
Answer : D
How would you describe the value of using the Vault transit secrets engine?
- A. Vault has an API that can be programmatically consumed by applications
- B. The transit secrets engine ensures encryption in-transit and at-rest is enforced enterprise wide
- C. Encryption for application data is best handled by a storage system or database engine, while storing encryption keys in Vault
- D. The transit secrets engine relieves the burden of proper encryption/decryption from application developers and pushes the burden onto the operators of Vault
Answer : D
31 days access 