ExamTopics Logo
Mail Us[email protected]
Menu
Hashicorp Discussions
exam questions

Exam Vault Associate 002 All Questions

View all questions & answers for the Vault Associate 002 exam
Go to Exam

Exam Vault Associate 002 topic 1 question 15 discussion

Actual exam question from HashiCorp's Vault Associate 002
Question #: 15
Topic #: 1
[All Vault Associate 002 Questions]

Your DevOps team would like to provision VMs in GCP via a CICD pipeline. They would like to integrate Vault to protect the credentials used by the tool. Which secrets engine would you recommend?

  • A. Google Cloud Secrets Engine
  • B. Identity secrets engine
  • C. Key/Value secrets engine version 2
  • D. SSH secrets engine
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by daz_rekka at Jan. 17, 2024, 1:14 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sadi123
1 month, 1 week ago
Selected Answer: A
The Google Cloud Secrets Engine in Vault allows dynamic creation of short-lived GCP IAM credentials. This is ideal for provisioning VMs securely in a CI/CD pipeline because: It avoids storing long-lived credentials in pipeline configs. Credentials can be automatically revoked after use. It integrates directly with GCP IAM to create temporary service account keys.
upvoted 1 times
...
daz_rekka
7 months, 4 weeks ago
Selected Answer: A
https://developer.hashicorp.com/vault/docs/secrets/gcp
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago