Weekend Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = simple70

Pass the HashiCorp Security Automation Certification VA-002-P Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.
Exam VA-002-P Premium Access

View all detail and faqs for the VA-002-P exam

Go to Exam

415 Students Passed

88% Average Score

94% Same Questions
Viewing page 1 out of 6 pages
Viewing questions 1-10 out of questions
Questions # 1:

Vault has failed to start. You inspect the log and find the error below. What needs to be changed in order to successfully start Vault?

"Error parsing config.hcl: At 1:12: illegal char"

Options:

A.

the " character cannot be used in the config file

B.

fix the syntax error in the Vault configuration file

C.

you must use single quotes vs double quotes in the config file

D.

line 1 on the config file is blank

Questions # 2:

Complete the following sentence:

The terraform state command can be used to ____

Options:

A.

view the entire state file

B.

modify the current state, such as removing items

C.

refresh the existing state

D.

there is no such command

Questions # 3:

In regards to deploying resources in multi-cloud environments, what are some of the benefits of using Terraform rather than a provider's native tooling? (select three)

Options:

A.

Terraform simplifies management and orchestration, helping operators build large-scale, multi-cloud infrastructure

B.

Terraform can help businesses deploy applications on multiple clouds and on-premises infrastructure

C.

Terraform can manage cross-cloud dependencies

D.

Terraform is not cloud-agnostic and can be used to deploy resources across a single public cloud

Questions # 4:

What is the Consul Agent?

Options:

A.

a process that registers services with Consul

B.

an agent that runs in the background to provide additional features for Consul

C.

the core process of Consul which maintains membership information, manages services, runs checks, responds to queries, and more.

D.

a daemon that Vault uses to register auth methods across all of its clusters to ensure consistency among the data written to disk

Questions # 5:

Which command is used to initialize Vault after first starting the Vault service?

Options:

A.

vault create key

B.

vault operator init

C.

vault operator initialize keys

D.

vault start

E.

vault operator unseal

Questions # 6:

In a Consul cluster, participating nodes can be only one of two types. Select the valid types. (select two)

Options:

A.

follower

B.

secondary

C.

active

D.

primary

E.

leader

F.

passive

Questions # 7:

Which Terraform command will force a marked resource to be destroyed and recreated on the next apply?

Options:

A.

terraform fmt

B.

terraform destroy

C.

terraform taint

D.

terraform refresh

Questions # 8:

After decrypting data using the transit secrets engine, the plaintext output does not match the plaintext credit card number that you encrypted. Which of the following answers provides a solution?

1. $ vault write transit/decrypt/creditcard\ ciphertext="vault:v1:cZNHVx+sxdMErXRSuDa1q/pz49fXTn1PScKfhf+PIZPvy8xKfkytpwKcbC0fF2U=" \

2.

3. Key Value

4. --- -----

5. plaintext Y3JlZGl0LWNhcmQtbnVtYmVyCg==

Options:

A.

The resulting plaintext data is base64-encoded. To reveal the original plaintext, use the base64 --decode command.

B.

The data is corrupted. Execute the encryption command again using a different data key

C.

the user doesn't have permission to decrypt the data, therefore Vault returns false data so as not to reveal if the data was actually encrypted by Vault

D.

Vault is sealed, therefore the data cannot be decrypted. Unseal Vault to properly decrypt the data

Questions # 9:

Your organization is running Vault open source and has decided it wants to use the Identity secrets engine. You log into Vault but are unable to find it in the list to enable. What gives?

Question # 9

Options:

A.

because you are running open-source and the identity secrets engine is an Enterprise feature, it is not available to enable.

B.

the identity secrets engine was deprecated in previous versions

C.

this secrets engine will be mounted by default.

D.

the policy attached to your user doesn't allow access to the Identity secrets engine.

Questions # 10:

You've deployed Vault in your production environment and are curious to understand metrics on your Vault cluster, such as the number of writes to the backend, the status of WALs, and the seal status. What feature would you configure in order to view these metrics?

Options:

A.

audit device

B.

telemetry

C.

nothing to configure, these are available in the Vault log found on the OS

D.

enable logs for each individual secrets engines

Viewing page 1 out of 6 pages
Viewing questions 1-10 out of questions
TOP CODES

TOP CODES

Top selling exam codes in the certification world, popular, in demand and updated to help you pass on the first try.

2V0-11.25
ADM-201
Agentforce-Specialist
CMMC-CCP
Data-Cloud-Consultant
PCNSE
PDI
PSE-Strata-Pro-24
Secure-Software-Design
Sharing-and-Visibility-Architect
Workday-Pro-Integrations
ZDTA