Summer Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: buysanta

Exact2Pass Menu

HashiCorp Certified: Vault Associate (003) Exam

Last Update 1 hour ago Total Questions : 324

The HashiCorp Certified: Vault Associate (003) Exam content is now fully updated, with all current exam questions added 1 hour ago. Deciding to include HCVA0-003 practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our HCVA0-003 exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these HCVA0-003 sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any HashiCorp Certified: Vault Associate (003) Exam practice test comfortably within the allotted time.

Question # 71

Which of the following are valid types of tokens available in Vault? (Select five)

A.

Primary token

B.

Batch token

C.

Orphan service token

D.

Service token

E.

Root token

F.

Periodic service token

Question # 72

Tanner manages a data processing application and needs to be sure the data being processed is encrypted so it is securely stored post-processing. Which secrets engines can encrypt data? (Select three)

A.

transit

B.

KMIP

C.

SSH

D.

transform

Question # 73

Vault operators can create two types of groups in Vault. What are the two types?

A.

External groups

B.

Security groups

C.

Policy groups

D.

Internal groups

Question # 74

What is the default TTL for tokens in Vault if one is not specified?

A.

24 hours (1 day)

B.

15 minutes

C.

768 hours (32 days)

D.

60 minutes (1 hour)

Question # 75

When a lease is created, what actions can be performed by using only the lease ID? (Choose two)

A.

Renew the lease

B.

Revoke the lease

C.

Extend the max TTL for the lease

D.

Authenticate using the lease ID

Question # 76

A DevOps engineer has set up LDAP and GitHub auth methods. The engineer must ensure user Sarah, who authenticates via either method, has consistent access permissions. Which approach correctly describes how to achieve this in Vault?

A.

Create an entity for Sarah and map both her LDAP and GitHub identities as entity aliases to this single entity

B.

Create an external group and add the LDAP and GitHub providers as members of the group

C.

Create separate policies for each auth method and manually ensure they remain synchronized

D.

Configure a trust relationship between the LDAP and GitHub providers to ensure Sarah’s account is synced

Question # 77

You would like to provision virtual machines (VMs) using infrastructure as code (IaC). The VMs require an OAuth token to access GCP services during provisioning. You are required to use tokens that can be generated and revoked automatically.

Which secrets engine would meet this need?

A.

Identity secrets engine

B.

Key/Value secrets engine version 2

C.

Google Cloud secrets engine

D.

SSH secrets engine

Question # 78

Based on the output below, how many policies have been added to Vault?

$ vault policy list

base

default

root

web-app-1

automation-team

A.

3

B.

4

C.

1

D.

2

Question # 79

A user issues the following cURL command to encrypt data using the transit engine and the Vault AP:

Which payload.json file has the correct contents?

A.

B.

C.

D.

Question # 80

You can only create orphan tokens using the root token.

A.

True

B.

False

Go to page: