HashiCorp HCVA0-003 - HashiCorp Certified: Vault Associate (003) Exam
Vault operators can create two types of groups in Vault. What are the two types?
True or False? A token can be renewed up until the max TTL, even if the TTL has been reached.
After setting up a new HashiCorp Vault server with the default configurations, which method can be used to unseal Vault?
Your organization operates active/active applications across multiple data centers for high availability. Which Vault feature should be used in the secondary data centers to provide local access to secrets?
You need to create a limited-privileged token that isn’t impacted by the TTL of its parent. What type of token should you create?
Which of the following secrets engines can store static secrets in Vault for future retrieval?
When you are unsealing Vault using unseal keys, what are you actually doing?
Which of the following actions can be performed if you only had access to a token’s accessor? (Select four)
You have multiple Kubernetes pods that need frequent access to Vault to retrieve credentials for establishing connectivity to a backend database. You enable the Kubernetes auth method in Vault. What resource do you need to create within Kubernetes to complete this configuration?
What command would you use to enable the Kubernetes secrets engine at the path of /k8s-cluster?
