Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

HashiCorp Exam Vault-Associate Topic 7 Question 34 Discussion

Actual exam question for HashiCorp's Vault-Associate exam
Question #: 34
Topic #: 7
[All Vault-Associate Questions]

The key/value v2 secrets engine is enabled at secret/ See the following policy:

Which of the following operations are permitted by this policy? Choose two correct answers.

Show Suggested Answer Hide Answer
Suggested Answer: A

An authentication method should be selected for a use case based on the auth method that best establishes the identity of the client. The identity of the client is the basis for assigning a set of policies and permissions to the client in Vault. Different auth methods have different ways of verifying the identity of the client, such as using passwords, tokens, certificates, cloud credentials, etc. Depending on the use case, some auth methods may be more suitable or convenient than others. For example, for human users, the userpass or ldap auth methods may be easy to use, while for machines or applications, the approle or aws auth methods may be more secure and scalable. The choice of the auth method should also consider the trade-offs between security, performance, and usability.Reference:Auth Methods | Vault | HashiCorp Developer,Authentication - Concepts | Vault | HashiCorp Developer


by Justine at Jan 13, 2025, 05:00 AM

Limited Time Offer

25%

Off

Get Premium Vault-Associate Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Melvin
17 days ago
Alright, let's see here. Based on the policy, I'm guessing A and C are the correct answers. Get and metadata operations seem to be allowed, but no putting or deleting. Though I wonder if that means I can't update anything either... Hmm, tricky one.
upvoted 0 times
...
Billi
18 days ago
I'm not sure, I think C and E might also be permitted.
upvoted 0 times
...
Ryann
22 days ago
I agree with Whitley, A and B make sense based on the policy.
upvoted 0 times
...
Whitley
24 days ago
I think A and B are permitted.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77