Summer Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

HashiCorp HCVA0-003 - HashiCorp Certified: Vault Associate (003) Exam

Page: 1 / 10
Total 324 questions

Select the policies below that permit you to create a new entry of environment=prod at the path /secrets/apps/my_secret (select three).

A.

path " secrets/+/my_secret " { capabilities = [ " create " ] allowed_parameters = { " * " = [] } }

B.

path " secrets/apps/my_secret " { capabilities = [ " update " ] }

C.

path " secrets/apps/my_secret " { capabilities = [ " create " ] allowed_parameters = { " environment " = [] } }

D.

path " secrets/apps/* " { capabilities = [ " create " ] allowed_parameters = { " environment " = [ " dev " , " test " , " qa " , " prod " ] } }

When generating dynamic credentials, Vault also creates associated metadata, including information like time duration, renewability, and more, and links it to the credentials. What is this referred to as?

A.

Secret

B.

Token

C.

Lease

D.

Secrets engine

True or False? When encrypting data with the Transit secrets engine, Vault always stores the ciphertext in a dedicated KV store along with the associated encryption key.

A.

True

B.

False

By default, what TCP port does Vault replication use?

A.

tcp/8200

B.

tcp/8300

C.

tcp/8201

D.

tcp/8301

When configuring Vault replication and monitoring its status, you keep seeing something called ' WALs ' . What are WALs?

A.

Warning of allocated logs

B.

Write along logging

C.

Write-ahead logs

D.

Wake after LAN

Based on the screenshot below, how many auth methods have been enabled on this Vault instance?

A.

1

B.

2

C.

4

D.

3

What is the difference between the TTL and the Max TTL (select two)?

A.

The TTL defines when the token will expire and be revoked

B.

The TTL defines when another token will be generated

C.

The Max TTL defines the timeframe for which a token cannot be used

D.

The Max TTL defines the maximum timeframe for which a token can be renewed

You logged into the Vault CLI and attempted to enable an auth method, but you received this error message. What can you do to resolve the error and configure Vault?

(Error: dial tcp 127.0.0.1:8200: connect: connection refused)

A.

Restart the Vault service on this node

B.

Ask an admin to grant you permission to enable the userpass auth method

C.

Change ' userpass ' to ' username and password '

D.

Set the VAULT_ADDR environment variable to HTTP

What is the default maximum time-to-live (TTL) for a token, measured in days?

A.

32 days (768 hours)

B.

7 days (168 hours)

C.

14 days (336 hours)

D.

31 days (744 hours)

From the options below, select the benefits of using a batch token over a service token (select four).

A.

Often used for ephemeral, high-performance workloads

B.

Can be a root token

C.

Can be used on performance replication clusters (if orphan)

D.

Has accessors

E.

Lightweight and scalable

F.

No storage cost for token creation