You have enabled the Transit secrets engine on your Vault cluster to provide an "encryption as a service" service as your team develops new applications. What is a prime use case for the Transit secrets engine?

• A.Encrypting data before being written to an Amazon S3 bucket
• B.Storing the encrypted data in Vault for easy retrieval
• C.Generating dynamic SSH credentials for access to local systems
• D.Creating X.509 certificates for a new fleet of containers

Comment: *

Name: *

Email: *

Verification: *

Based on the output below, how many policies have been added to Vault?
$ vault policy list
base
default
root
web-app-1
automation-team

• A.3
• B.4
• C.1
• D.2

Comment: *

Name: *

Email: *

Verification: *

Where does the Vault Agent store its cache?

• A.In a file encrypted using the Vault transit secret engine
• B.In the Vault key/value store
• C.In an unencrypted file
• D.In memory

Comment: *

Name: *

Email: *

Verification: *

Which of the following features in Vault will replicate service tokens between clusters?

• A.Disaster Recovery Replication
• B.Performance Replication
• C.Vault Agent
• D.Integrated Storage

Comment: *

Name: *

Email: *

Verification: *

You are using Vault to generate dynamic credentials for a Microsoft SQL server to perform queries for a month-end report. The report seems to be taking much longer than expected due to degradation on the underlying server, and you are afraid that Vault might automatically revoke the credentials. How can you extend the time the credentials are valid to ensure your month-end query is successful?

• A.Renew the lease
• B.Generate a new lease
• C.Create a new role within the secrets engine for the database
• D.Revoke the lease

Comment: *

Name: *

Email: *

Verification: *