Which of the following are replication methods available in Vault Enterprise? Choose two correct answers.
Your DevOps team would like to provision VMs in GCP via a CICD pipeline. They would like to integrate Vault to protect the credentials used by the tool. Which secrets engine would you recommend?
The Vault encryption key is stored in Vault's backend storage.
You are using the Vault userpass auth method mounted at auth/userpass. How do you create a new user named "sally" with password "h0wN0wB4r0wnC0w"? This new user will need the power-users policy.
An organization wants to authenticate an AWS EC2 virtual machine with Vault to access a dynamic database secret. The only authentication method which they can use in this case is AWS.
Which statement describes the results of this command: $ vault secrets enable transit
Use this screenshot to answer the question below:
When are you shown these options in the GUI?
What are orphan tokens?
You have a 2GB Base64 binary large object (blob) that needs to be encrypted. Which of the following best describes the transit secrets engine?
What is the Vault CLI command to query information about the token the client is currently using?
Running the second command in the GUI CLI will succeed.
A user issues the following cURL command to encrypt data using the transit engine and the Vault AP:
Which payload.json file has the correct contents?
The following three policies exist in Vault. What do these policies allow an organization to do?
Which of the following statements describe the CLI command below?
S vault login -method-1dap username-mitche11h
Where can you set the Vault seal configuration? Choose two correct answers.
Which of the following is a machine-oriented Vault authentication backend?