When Vault is sealed, which are the only two options available to a Vault administrator? (select two)

• A.rotate the encryption key
• B.unseal Vault
• C.view the status of Vault
• D.configure policies
• E.author security policies
• F.view data stored in the key/value store

Comment: *

Name: *

Email: *

Verification: *

Which command is used to initialize Vault after first starting the Vault service?

• A.vault create key
• B.vault operator init
• C.vault operator initialize keys
• D.vault start
• E.vault operator unseal

Comment: *

Name: *

Email: *

Verification: *

In regards to Terraform state file, select all the statements below which are correct: (select four)

• A.storing state remotely can provide better security
• B.the Terraform state can contain sensitive data, therefore the state file should be protected from unauthorized access
• C.Terraform Cloud always encrypts state at rest
• D.using the mask feature, you can instruct Terraform to mask sensitive data in the state file
• E.when using local state, the state file is stored in plain-text
• F.the state file is always encrypted at rest

Comment: *

Name: *

Email: *

Verification: *

Which of the following best describes a Terraform provider?

• A.describes an infrastructure object, such as a virtual network, compute instance, or other components
• B.a container for multiple resources that are used together
• C.serves as a parameter for a Terraform module that allows a module to be customized
• D.a plugin that Terraform uses to translate the API interactions with the service or provider

Comment: *

Name: *

Email: *

Verification: *

True or False? When using the Terraform provider for Vault, the tight integration between these HashiCorp tools provides the ability to mask secrets in the terraform plan and state files.

• A.False
• B.True

Comment: *

Name: *

Email: *

Verification: *