A. Policy-as-code can enforce security best practices
B. You can restrict specific configurations on resources like "CIDR=0.0.0.0/0" not allowed
C. You can enforce a list of approved AWS AMIs
Sentinel is a policy-as-code framework that integrates with Terraform Cloud and Terraform Enterprise, allowing you to enforce policies on your infrastructure as part of the provisioning process. By using Sentinel, you can enforce security best practices, restrict specific configurations such as disallowing overly permissive CIDR blocks, and maintain a list of approved AWS AMIs, among other things. This helps to ensure that your infrastructure is secure, compliant, and adheres to organizational standards.
Answer: A, B, C. Sentinel is a policy-as-code framework that can be used to enforce best practices and security policies on Terraform configurations. Sentinel can be used to restrict specific configurations on resources, enforce a list of approved AWS AMIs, and much more. Sentinel policies can be written in a variety of languages, including HashiCorp Configuration Language (HCL). However, checking out and checking in cloud access keys is not a feature provided by Sentinel.
You can't checkout keys, and you can't create custom HCL
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Oleg_gol
1 year, 6 months agooskarq
1 year, 7 months agotbhtp
1 year, 7 months agocamps
1 year, 7 months agohahano
1 year, 7 months ago