Docker Certified Associate (DCA) Test Review Questions Set 9 – Security
Docker Certified Associate Test Review Questions Set 9 - Security
Start
Congratulations - you have completed Docker Certified Associate Test Review Questions Set 9 - Security.
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1 |
Where do you create Docker Role Based Access Controls (RBAC)?
A | Docker Machine |
B | Universal Control Plane |
C | Docker Trusted Registry |
D | Docker Compose |
Question 1 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/
Question 2 |
What are the two types of UCP client bundles?
A | Admin user certificate bundles and user certificate bundles |
B | Ops client bundles and dev client bundles |
C | Docker CLI bundles and Docker web UI bundles |
D | Docker UCP client bundles and DTR client bundles |
Question 2 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/user/access-ucp/cli-based-access/
Question 3 |
Docker security scan can be started by all users including those with read-only access. True or false?
A | False |
B | True |
Question 4 |
What are the steps needed to sign images in a way that UCP trusts them? (select three)
A | Approve image sign on UCP |
B | Initialize trust metadata for the repository |
C | Delegate signing to the keys in your UCP client bundle |
D | Configure Notary client |
Question 4 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/#sign-images-that-ucp-can-trust
Question 5 |
Docker security scan result is available in both UCP and DTR. True or false?
A | True |
B | False |
Question 5 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/scan-images-for-vulnerabilities/#the-docker-security-scan-process
Question 6 |
What is the difference between UCP workers and managers?
A | ucp-agent service automatically starts serving all UCP components in manager node, and only a proxy service in worker node |
B | ucp-agent service automatically starts serving all UCP components in worker node, and only a proxy service in manager node |
Question 6 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/architecture/#under-the-hood
Question 7 |
What is a grant made up of in Docker's Role Based Access Controls (RBAC)? (select three)
A | Subject |
B | Certificate |
C | Resource collection |
D | Role |
Question 7 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/grant-permissions/
Question 8 |
Which of the followings are Docker Engine Security features? (select all that apply)
A | You can use certificate-based client-server authentication to verify a Docker daemon has the rights to access images on a registry |
B | You can configure secure computing mode (Seccomp) policies to secure system calls in a container |
C | You can protect the Docker daemon socket and ensure only trusted Docker client connections |
D | You can configure Docker’s trust features so that your users can push and pull trusted images |
Question 8 Explanation:
Reference:
https://docs.docker.com/engine/security/
Question 9 |
Where is the option to integrate Docker Enterprise with LDAP?
A | Docker Compose |
B | Universal Control Plane |
C | Docker Machine |
D | Docker Trusted Registry |
Question 9 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/admin/configure/external-auth/
Question 10 |
What is the command that need to be executed to sign an image before pushing it to repository?
A | export DOCKER_CONTENT_TRUST=1
|
B | export SIGN_DOCKER_IMAGE=1 |
C | export TRUST_DOCKER_IMAGE=1 |
D | export TRUST_DOCKER_CONTENT=1 |
Question 10 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 10 questions to complete.
← |
List |
→ |
Return
Shaded items are complete.
1 | 2 | 3 | 4 | 5 |
6 | 7 | 8 | 9 | 10 |
End |
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
Correct Answer
You Selected
Not Attempted
Final Score on Quiz
Attempted Questions Correct
Attempted Questions Wrong
Questions Not Attempted
Total Questions on Quiz
Question Details
Results
Date
Score
Hint
Time allowed
minutes
seconds
Time used
Answer Choice(s) Selected
Question Text
All done
Need more practice!
Keep trying!
Not bad!
Good work!
Perfect!
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate (DCA) Certification Test Resources page.
Related Posts
-
Docker Certified Associate (DCA) Test Review Questions Set 3 - Orchestration
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
-
Docker Certified Associate (DCA) Test Review Questions Set 4 - Orchestration
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
-
Docker Certified Associate (DCA) Test Review Questions Set 7 - Networking Part 1
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…