1. What additional security features does the Vault Associate Professional certification focus on?
Advanced encryption and key management
Basic secret storage
Terraform automation
Cloud cost optimization
✅ Correct Answer: Advanced encryption and key management
2. How does HashiCorp Vault ensure high availability?
By using Raft storage backend
By creating multiple API gateways
By storing secrets in a SQL database
By using serverless technology
✅ Correct Answer: By using Raft storage backend
3. What is the primary role of the Vault Identity Secrets Engine?
To create and manage identity tokens
To store and rotate API keys
To encrypt filesystem data
To monitor application logs
✅ Correct Answer: To create and manage identity tokens
4. Which Vault feature provides automatic rotation of secrets?
Dynamic Secrets
Transit Engine
Static Secrets
PKI Engine
✅ Correct Answer: Dynamic Secrets
5. What is the purpose of the Vault Enterprise Replication feature?
To replicate data across multiple clusters for redundancy
To store secrets in multiple cloud providers
To enable multi-factor authentication
To create backups of encrypted data
✅ Correct Answer: To replicate data across multiple clusters for redundancy
6. Which of the following best describes Vault’s Namespaces feature?
Logical separation of tenants within Vault
A way to store multiple versions of a secret
A method for encrypting API keys
A system for rotating SSH keys
✅ Correct Answer: Logical separation of tenants within Vault
7. Which Vault component is responsible for managing encryption keys?
Transit Secrets Engine
Dynamic Secrets Engine
Identity Engine
Audit Log Engine
✅ Correct Answer: Transit Secrets Engine
8. What is the default storage backend for Vault in high availability mode?
Integrated Storage (Raft)
AWS S3
MySQL
PostgreSQL
✅ Correct Answer: Integrated Storage (Raft)
9. Which command is used to configure Vault audit logging?
vault audit enable
vault log start
vault operator audit
vault config logging
✅ Correct Answer: vault audit enable
10. What is the purpose of the Vault AppRole authentication method?
To authenticate applications with Vault using role-based access
To allow human users to log into Vault
To create API keys for Vault authentication
To provide LDAP authentication
✅ Correct Answer: To authenticate applications with Vault using role-based access
11. What does Vault’s Auto Unseal feature do?
Automatically unseals Vault using an external key management service
Disables Vault’s encryption temporarily
Allows root users to bypass authentication
Deletes old secrets stored in Vault
✅ Correct Answer: Automatically unseals Vault using an external key management service
12. What is the purpose of Vault’s PKI Secrets Engine?
To generate and manage X.509 certificates
To store and encrypt API keys
To provide cloud access authentication
To monitor system logs
✅ Correct Answer: To generate and manage X.509 certificates
13. What is the purpose of Vault’s Sentinel integration?
To enforce policies for security and compliance
To store encryption keys
To monitor Vault server health
To authenticate users with OAuth
✅ Correct Answer: To enforce policies for security and compliance
14. Which command is used to generate a new Vault token?
vault token create
vault auth enable
vault generate token
vault policy apply
✅ Correct Answer: vault token create
15. What is the purpose of Vault’s Lease feature?
To define time-limited access to secrets
To store API keys in memory
To restrict Vault access to root users
To rotate master encryption keys
✅ Correct Answer: To define time-limited access to secrets
16. What is the primary benefit of using Vault Agent?
It automates authentication and secret retrieval
It provides a CLI for Vault management
It monitors Vault server performance
It integrates Vault with Kubernetes
✅ Correct Answer: It automates authentication and secret retrieval
17. Which Vault command is used to configure policies?
vault policy write
vault token create
vault secret enable
vault auth list
✅ Correct Answer: vault policy write
18. What is the main advantage of using Namespaces in Vault Enterprise?
Multi-tenancy support within a single Vault instance
Faster replication across clusters
Automatic key rotation
Enables LDAP authentication
✅ Correct Answer: Multi-tenancy support within a single Vault instance
19. How does Vault support encryption at rest?
By encrypting all data before writing it to storage
By storing encryption keys externally
By requiring TLS for all Vault connections
By using client-side encryption
✅ Correct Answer: By encrypting all data before writing it to storage
20. What is the purpose of Vault’s Tokenization feature?
To replace sensitive data with non-sensitive placeholders
To generate API keys for cloud authentication
To create long-lived Vault tokens
To encrypt entire databases
✅ Correct Answer: To replace sensitive data with non-sensitive placeholders
The Terraform Hashicorp Va 002 P certification is a globally recognized credential for IT professionals.
This practice test helps you prepare by covering key topics like hardware, networking, troubleshooting, and security.
Want more practice? Check out our other mock exams:
