After setting up a new HashiCorp Vault server with the default configurations, which method can be used to unseal Vault?

• A.Log on to each Vault node and provide the root token
• B.Running vault operator init to regenerate unseal keys and automatically unseal the Vault
• C.Submit a threshold of unseal keys to reconstruct the root key
• D.Restart the Vault service, which will automatically unseal it

Comment: *

Name: *

Email: *

Verification: *

What command can be used to revoke all leases associated with a database role named prod-mysql?

• A.vault lease revoke database/role/prod-mysql
• B.vault lease revoke -prefix database/creds/prod-mysql
• C.vault revoke database/role/prod-mysql
• D.vault lease revoke database/creds/prod-mysql

Comment: *

Name: *

Email: *

Verification: *

What is the default maximum time-to-live (TTL) for a token, measured in days?

• A.32 days (768 hours)
• B.7 days (168 hours)
• C.14 days (336 hours)
• D.31 days (744 hours)

Comment: *

Name: *

Email: *

Verification: *

True or False? The following policy permits a user to read secrets contained in the path secrets/cloud/apps
/jenkins?
text
CollapseWrapCopy
path "secrets/cloud/apps/jenkins/*" {
capabilities = ["create", "read", "update", "delete", "list"]
}

• A.True
• B.False

Comment: *

Name: *

Email: *

Verification: *

True or False? The root and default policies can be deleted if they are not needed or being used.

• A.True
• B.False

Comment: *

Name: *

Email: *

Verification: *