Free Preparation Discussions
MENU
HashiCorp VA-002-P Exam
- Topic 1: Differentiate between service and batch tokens. Choose one based on use-case/ Describe authentication methods
- Topic 2: Explain the value of short-lived, dynamically generated secrets/ Choose an authentication method based on use case
- Topic 3: Describe the encryption of data stored by Vault/ Contrast dynamic secrets vs. static secrets and their use cases
- Topic 4: Describe Shamir secret sharing and unsealing/ Craft a Vault policy based on requirements/ Describe Vault policy syntax: capabilities
- Topic 5: Be aware of identities and groups/ Describe root token uses and lifecycle/ Compare and configure Vault secrets engines
- Topic 6: Configure transit secret engine/ Compare authentication methods/ Illustrate the value of Vault policy
- Topic 7: Choose a secret method based on use case/ Describe Vault policy syntax: path/ Configure authentication methods
- Topic 8: Differentiate human vs. system auth methods/ Configure environment variables/ Configure authentication methods
- Topic 9: Create tokens based on need/ Explain the purpose of a lease ID/ Authenticate to Vault via Curl
- Topic 10: Access Vault secrets via Curl/ Manage Vault leases/ Define token accessors/ Create Vault policies
- Topic 11: Describe secrets caching/ Configure Vault policies/ Explain orphaned tokens/ Configure Vault policies
- Topic 12: Explain encryption as a service/ Explain response wrapping/ Explain Vault architecture/ Authenticate to Vault
Free HashiCorp VA-002-P Exam Actual Questions
The questions for VA-002-P were last updated On May. 20, 2023
Terraform Enterprise (also referred to as pTFE) requires what type of backend database for a clustered deployment?
External Services mode stores the majority of the stateful data used by the instance in an external PostgreSQL database and an external S3-compatible endpoint or Azure blob storage. There are still critical data stored on the instance that must be managed with snapshots. Be sure to check the PostgreSQL Requirements for information that needs to be present for Terraform Enterprise to work. This option is best for users with expertise managing PostgreSQL or users that have access to managed PostgreSQL offerings like AWS RDS.
From the code below, identify the implicit dependency:
1. resource "aws_eip" "public_ip" {
2. vpc = true
3. instance = aws_instance.web_server.id
4. }
5. resource "aws_instance" "web_server" {
6. ami = "ami-2757f631"
7. instance_type = "t2.micro"
8. depends_on = [aws_s3_bucket.company_data]
9. }
The EC2 instance labeled web_server is the implicit dependency as the aws_eip cannot be created until the aws_instance labeled web_server has been provisioned and the id is available.
Note that aws_s3_bucket.example is an explicit dependency.
Which statements best describes what the local variable assignment is doing in the following code snippet:
1. variable "subnet_details" {
2. type = list(object({
3. cidr = string
4. subnet_name = string
5. route_table_name = string
6. aznum = number
7. }))
8. }
9. locals {
10. route_tables_all = distinct([for s in var.subnet_details : s.route_table_name ])
11. }
route_tables_all is assigned a list of unique route table names filtered from a list of objects describing subnet details, one of those object attributes being route_table_name.
From the code below, identify the implicit dependency:
1. resource "aws_eip" "public_ip" {
2. vpc = true
3. instance = aws_instance.web_server.id
4. }
5. resource "aws_instance" "web_server" {
6. ami = "ami-2757f631"
7. instance_type = "t2.micro"
8. depends_on = [aws_s3_bucket.company_data]
9. }
The EC2 instance labeled web_server is the implicit dependency as the aws_eip cannot be created until the aws_instance labeled web_server has been provisioned and the id is available.
Note that aws_s3_bucket.example is an explicit dependency.
Which statements best describes what the local variable assignment is doing in the following code snippet:
1. variable "subnet_details" {
2. type = list(object({
3. cidr = string
4. subnet_name = string
5. route_table_name = string
6. aznum = number
7. }))
8. }
9. locals {
10. route_tables_all = distinct([for s in var.subnet_details : s.route_table_name ])
11. }
route_tables_all is assigned a list of unique route table names filtered from a list of objects describing subnet details, one of those object attributes being route_table_name.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Submit Cancel