Docker Certified Associate (DCA) Test Review Questions Set 9 – Security
Docker Certified Associate Test Review Questions Set 9 - Security
Start
Congratulations - you have completed Docker Certified Associate Test Review Questions Set 9 - Security.
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1 |
Which of the followings are Docker Engine Security features? (select all that apply)
A | You can use certificate-based client-server authentication to verify a Docker daemon has the rights to access images on a registry |
B | You can protect the Docker daemon socket and ensure only trusted Docker client connections |
C | You can configure Docker’s trust features so that your users can push and pull trusted images |
D | You can configure secure computing mode (Seccomp) policies to secure system calls in a container |
Question 1 Explanation:
Reference:
https://docs.docker.com/engine/security/
Question 2 |
Docker security scan can be started by all users including those with read-only access. True or false?
A | False |
B | True |
Question 3 |
What are the two types of UCP client bundles?
A | Ops client bundles and dev client bundles |
B | Docker CLI bundles and Docker web UI bundles |
C | Admin user certificate bundles and user certificate bundles |
D | Docker UCP client bundles and DTR client bundles |
Question 3 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/user/access-ucp/cli-based-access/
Question 4 |
What are the steps needed to sign images in a way that UCP trusts them? (select three)
A | Configure Notary client |
B | Initialize trust metadata for the repository |
C | Approve image sign on UCP |
D | Delegate signing to the keys in your UCP client bundle |
Question 4 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/#sign-images-that-ucp-can-trust
Question 5 |
Where do you create Docker Role Based Access Controls (RBAC)?
A | Universal Control Plane |
B | Docker Compose |
C | Docker Trusted Registry |
D | Docker Machine |
Question 5 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/
Question 6 |
Where is the option to integrate Docker Enterprise with LDAP?
A | Docker Machine |
B | Universal Control Plane |
C | Docker Compose |
D | Docker Trusted Registry |
Question 6 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/admin/configure/external-auth/
Question 7 |
What is a grant made up of in Docker's Role Based Access Controls (RBAC)? (select three)
A | Resource collection |
B | Role |
C | Subject |
D | Certificate |
Question 7 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/grant-permissions/
Question 8 |
What is the command that need to be executed to sign an image before pushing it to repository?
A | export TRUST_DOCKER_IMAGE=1 |
B | export DOCKER_CONTENT_TRUST=1
|
C | export TRUST_DOCKER_CONTENT=1 |
D | export SIGN_DOCKER_IMAGE=1 |
Question 8 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/
Question 9 |
Docker security scan result is available in both UCP and DTR. True or false?
A | True |
B | False |
Question 9 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/scan-images-for-vulnerabilities/#the-docker-security-scan-process
Question 10 |
What is the difference between UCP workers and managers?
A | ucp-agent service automatically starts serving all UCP components in manager node, and only a proxy service in worker node |
B | ucp-agent service automatically starts serving all UCP components in worker node, and only a proxy service in manager node |
Question 10 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/architecture/#under-the-hood
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 10 questions to complete.
← |
List |
→ |
Return
Shaded items are complete.
1 | 2 | 3 | 4 | 5 |
6 | 7 | 8 | 9 | 10 |
End |
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
Correct Answer
You Selected
Not Attempted
Final Score on Quiz
Attempted Questions Correct
Attempted Questions Wrong
Questions Not Attempted
Total Questions on Quiz
Question Details
Results
Date
Score
Hint
Time allowed
minutes
seconds
Time used
Answer Choice(s) Selected
Question Text
All done
Need more practice!
Keep trying!
Not bad!
Good work!
Perfect!
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate (DCA) Certification Test Resources page.
Related Posts
-
Docker Certified Associate (DCA) Test Review Questions Set 3 - Orchestration
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
-
Docker Certified Associate (DCA) Test Review Questions Set 4 - Orchestration
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
-
Docker Certified Associate (DCA) Test Review Questions Set 7 - Networking Part 1
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…