Deal of the Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

HashiCorp VA-002-P Exam

Certification Provider: HashiCorp
Exam Name: HashiCorp Certified: Vault Associate
Number of questions in our database: 200
Exam Version: May. 20, 2023
VA-002-P Exam Official Topics:
  • Topic 1: Differentiate between service and batch tokens. Choose one based on use-case/ Describe authentication methods
  • Topic 2: Explain the value of short-lived, dynamically generated secrets/ Choose an authentication method based on use case
  • Topic 3: Describe the encryption of data stored by Vault/ Contrast dynamic secrets vs. static secrets and their use cases
  • Topic 4: Describe Shamir secret sharing and unsealing/ Craft a Vault policy based on requirements/ Describe Vault policy syntax: capabilities
  • Topic 5: Be aware of identities and groups/ Describe root token uses and lifecycle/ Compare and configure Vault secrets engines
  • Topic 6: Configure transit secret engine/ Compare authentication methods/ Illustrate the value of Vault policy
  • Topic 7: Choose a secret method based on use case/ Describe Vault policy syntax: path/ Configure authentication methods
  • Topic 8: Differentiate human vs. system auth methods/ Configure environment variables/ Configure authentication methods
  • Topic 9: Create tokens based on need/ Explain the purpose of a lease ID/ Authenticate to Vault via Curl
  • Topic 10: Access Vault secrets via Curl/ Manage Vault leases/ Define token accessors/ Create Vault policies
  • Topic 11: Describe secrets caching/ Configure Vault policies/ Explain orphaned tokens/ Configure Vault policies
  • Topic 12: Explain encryption as a service/ Explain response wrapping/ Explain Vault architecture/ Authenticate to Vault

Free HashiCorp VA-002-P Exam Actual Questions

The questions for VA-002-P were last updated On May. 20, 2023

Question #1

Terraform Enterprise (also referred to as pTFE) requires what type of backend database for a clustered deployment?

Reveal Solution Hide Solution
Correct Answer: C

External Services mode stores the majority of the stateful data used by the instance in an external PostgreSQL database and an external S3-compatible endpoint or Azure blob storage. There are still critical data stored on the instance that must be managed with snapshots. Be sure to check the PostgreSQL Requirements for information that needs to be present for Terraform Enterprise to work. This option is best for users with expertise managing PostgreSQL or users that have access to managed PostgreSQL offerings like AWS RDS.


Question #2

From the code below, identify the implicit dependency:

1. resource "aws_eip" "public_ip" {

2. vpc = true

3. instance = aws_instance.web_server.id

4. }

5. resource "aws_instance" "web_server" {

6. ami = "ami-2757f631"

7. instance_type = "t2.micro"

8. depends_on = [aws_s3_bucket.company_data]

9. }

Reveal Solution Hide Solution
Correct Answer: A

The EC2 instance labeled web_server is the implicit dependency as the aws_eip cannot be created until the aws_instance labeled web_server has been provisioned and the id is available.

Note that aws_s3_bucket.example is an explicit dependency.


Question #3

Which statements best describes what the local variable assignment is doing in the following code snippet:

1. variable "subnet_details" {

2. type = list(object({

3. cidr = string

4. subnet_name = string

5. route_table_name = string

6. aznum = number

7. }))

8. }

9. locals {

10. route_tables_all = distinct([for s in var.subnet_details : s.route_table_name ])

11. }

Reveal Solution Hide Solution
Correct Answer: D

route_tables_all is assigned a list of unique route table names filtered from a list of objects describing subnet details, one of those object attributes being route_table_name.


Question #4

From the code below, identify the implicit dependency:

1. resource "aws_eip" "public_ip" {

2. vpc = true

3. instance = aws_instance.web_server.id

4. }

5. resource "aws_instance" "web_server" {

6. ami = "ami-2757f631"

7. instance_type = "t2.micro"

8. depends_on = [aws_s3_bucket.company_data]

9. }

Reveal Solution Hide Solution
Correct Answer: A

The EC2 instance labeled web_server is the implicit dependency as the aws_eip cannot be created until the aws_instance labeled web_server has been provisioned and the id is available.

Note that aws_s3_bucket.example is an explicit dependency.


Question #5

Which statements best describes what the local variable assignment is doing in the following code snippet:

1. variable "subnet_details" {

2. type = list(object({

3. cidr = string

4. subnet_name = string

5. route_table_name = string

6. aznum = number

7. }))

8. }

9. locals {

10. route_tables_all = distinct([for s in var.subnet_details : s.route_table_name ])

11. }

Reveal Solution Hide Solution
Correct Answer: D

route_tables_all is assigned a list of unique route table names filtered from a list of objects describing subnet details, one of those object attributes being route_table_name.



Unlock all VA-002-P Exam Questions with Advanced Practice Test Features:
  • Select Question Types you want
  • Set your Desired Pass Percentage
  • Allocate Time (Hours : Minutes)
  • Create Multiple Practice tests with Limited Questions
  • Customer Support
Get Full Access Now
Disscuss HashiCorp VA-002-P Topics, Questions or Ask Anything Related

Save Cancel