CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. HashiCorp
  5. VA-002-P

Free VA-002-P Exam Braindumps (page: 8)

Page 8 of 51
PDF with 200 Questions

What command is used to renew a token, if permitted?

  1. vault operator token renew
  2. vault token update
  3. vault new <token-id>
  4. vault update token
  5. vault token renew
  6. vault renew token <token-id>

Answer(s): E

Explanation:

In order to renew a token, a user can issue a vault token renew command to extend the TTL. The token can also be renewed using the API



Unsealing Vault creates the encryption keys, which is used to unencrypt the data on the storage backend.

  1. FALSE
  2. TRUE

Answer(s): A

Explanation:

Unsealing is the process of obtaining the plaintext master key necessary to read the decryption key
to decrypt the data, allowing access to the Vault. The master key is used to decrypt the encryption key which can unencrypt the data on the storage backend.



Which type of Vault replication copies all data from Vault, including K/V data, policies, and client tokens?

  1. DR replication
  2. performance replication
  3. failover replication
  4. online replication

Answer(s): A

Explanation:

Vault Enterprise supports multi-datacenter deployment where you can replicate data across data centers for performance as well as disaster recovery.
In DR replication, secondary clusters do not forward service read or write requests until they are elevated and become a new primary.
DR replicated cluster will replicate all data from the primary cluster, including tokens. A performance replicated cluster, however, will not replicate the tokens from the primary, as the performance replicated cluster will generate its own client tokens for requests made directly to it. In performance replication, secondaries keep track of their own tokens and leases but share the underlying configuration, policies, and supporting secrets (K/V values, encryption keys for transit, etc).
Note: Failover and Online replication, there is no such replication exist in hashicorp vault.
Check below links for more details:-


Reference:

https://www.vaultproject.io/docs/enterprise/replication
https://learn.hashicorp.com/vault/operations/ops-disaster-recovery



Vault configuration files can be written in what languages? (select two)

  1. XML
  2. JSON
  3. YAML
  4. HCL

Answer(s): B,D

Explanation:

The Vault configuration file supports either JSON or HCL, which is HashiCorp Configuration Language



Page 8 of 51



Post your Comments and Discuss HashiCorp VA-002-P exam with other Community members:

Bruno commented on October 10, 2023
PDF is Vault, EXM is Teraform.
UNITED STATES
upvote