Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. HashiCorp
  5. VA-002-P

HashiCorp VA-002-P Exam
HashiCorp Certified: Vault Associate (Page 13 )

Updated On: 30-Jan-2026
Page 8 of 41
PDF with 200 Questions

Which of the following is considered a Terraform plugin?

  1. Terraform logic
  2. Terraform language
  3. Terraform tooling
  4. Terraform provider

Answer(s): D

Explanation:

Terraform is built on a plugin-based architecture. All providers and provisioners that are used in Terraform configurations are plugins, even the core types such as AWS and Heroku. Users of Terraform are able to write new plugins in order to support new functionality in Terraform.



What happens when a terraform apply command is executed?

  1. applies the changes required in the target infrastructure in order to reach the desired configuration
  2. creates the execution plan for the deployment of resources
  3. reconciles the state Terraform knows about with the real-world infrastructure
  4. the backend is initialized and the working directory is prepped

Answer(s): A

Explanation:

The terraform apply command is used to apply the changes required to reach the desired state of the configuration, or the pre-determined set of actions generated by a terraform plan execution plan.



Which of the following best describes a Terraform provider?

  1. describes an infrastructure object, such as a virtual network, compute instance, or other components
  2. a container for multiple resources that are used together
  3. serves as a parameter for a Terraform module that allows a module to be customized
  4. a plugin that Terraform uses to translate the API interactions with the service or provider

Answer(s): D

Explanation:

A provider is responsible for understanding API interactions and exposing resources. Providers generally are an IaaS (e.g., Alibaba Cloud, AWS, GCP, Microsoft Azure, OpenStack), PaaS (e.g., Heroku), or SaaS services (e.g., Terraform Cloud, DNSimple, CloudFlare).



What is a downside to using a Terraform provider, such as the Vault provider, to interact with sensitive data, such as reading secrets from Vault?

  1. Terraform and Vault must be running on the same physical host
  2. Terraform and Vault must be running on the same version
  3. Terraform requires a unique auth method to work with Vault
  4. Secrets are persisted to the state file and plans

Answer(s): D

Explanation:

Interacting with Vault from Terraform causes any secrets that you read and write to be persisted in both Terraform's state file and in any generated plan files. For any Terraform module that reads or writes Vault secrets, these files should be treated as sensitive and protected accordingly.



In order to make a Terraform configuration file dynamic and/or reusable, static values should be converted to use what?

  1. regular expressions
  2. module
  3. input parameters
  4. output value

Answer(s): C

Explanation:

Input variables serve as parameters for a Terraform module, allowing aspects of the module to be customized without altering the module's own source code, and allowing modules to be shared between different configurations.



Viewing page 13 of 41
Viewing questions 61 - 65 out of 200 questions



Post your Comments and Discuss HashiCorp VA-002-P exam prep with other Community members:

Join the VA-002-P Discussion