The userpass auth method has the ability to access external services in order to provide authentication to Vault.
Answer(s): A
The userpass auth method uses a local database that cannot interact with any services outside of the Vault instance.
What is the default method of authentication after first initializing Vault?
Answer(s): D
After initializing, Vault provides the root token to the user, this is the only way to log in to Vault to configure additional auth methods.
Which of the following best describes the storage backend?
Answer(s): B
The storage stanza configures the storage backend, which represents the location for the durable storage of Vault's information.Storage backend configuration is done through the Vault configuration file using the storage stanza.
https://www.vaultproject.io/docs/configuration/storage
Which of the following secrets engine can generate dynamic credentials? (select three)
Answer(s): A,B,E
Vault has many secrets engines that can generate dynamic credentials, including AWS, Azure, and database secrets engines. The key/value secret engine is used to store data, and the transit secret engine is used to encrypt data.
Post your Comments and Discuss HashiCorp VA-002-P exam with other Community members:
Bruno commented on October 10, 2023 PDF is Vault, EXM is Teraform. UNITED STATES upvote