002 Exam QuestionsBrowse all questions from this exam
Go to Exam

002 Exam - Question 14

The following three policies exist in Vault What do these policies allow an organization to do? app.hcl

Exam 002 Question 14

callcenter.hcl

Exam 002 Question 14

rewrap.hcl

Exam 002 Question 14
Show Answer
Correct Answer: A

These three policies allow the organization to separate the permissions for different actions associated with the transit secret engine. The first policy permits updating (which can include encryption) using the key, the second policy allows updating (which can include decryption) using the key, and the third policy permits reading the key details and updating for rewrapping data. Thus, these policies enable separate permissions for distinct operations within the transit secret engine.

Discussion

2 comments
Sign in to comment
daz_rekkaOption: A
Jan 17, 2024

https://developer.hashicorp.com/vault/docs/secrets/transit

gixejod225
Oct 4, 2024

C The most accurate statement describing what these policies allow the organization to do is C: "Encrypt, decrypt, and rewrap data using the transit engine all in one policy."