Docker Certified Associate (DCA) Test Review Questions Set 9 – Security
Docker Certified Associate Test Review Questions Set 9 - Security
Start
Congratulations - you have completed Docker Certified Associate Test Review Questions Set 9 - Security.
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1 |
What is a grant made up of in Docker's Role Based Access Controls (RBAC)? (select three)
A | Resource collection |
B | Role |
C | Certificate |
D | Subject |
Question 1 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/grant-permissions/
Question 2 |
What are the steps needed to sign images in a way that UCP trusts them? (select three)
A | Approve image sign on UCP |
B | Configure Notary client |
C | Delegate signing to the keys in your UCP client bundle |
D | Initialize trust metadata for the repository |
Question 2 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/#sign-images-that-ucp-can-trust
Question 3 |
Where is the option to integrate Docker Enterprise with LDAP?
A | Universal Control Plane |
B | Docker Compose |
C | Docker Machine |
D | Docker Trusted Registry |
Question 3 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/admin/configure/external-auth/
Question 4 |
Where do you create Docker Role Based Access Controls (RBAC)?
A | Docker Trusted Registry |
B | Docker Machine |
C | Universal Control Plane |
D | Docker Compose |
Question 4 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/
Question 5 |
Docker security scan can be started by all users including those with read-only access. True or false?
A | False |
B | True |
Question 6 |
What are the two types of UCP client bundles?
A | Docker UCP client bundles and DTR client bundles |
B | Docker CLI bundles and Docker web UI bundles |
C | Admin user certificate bundles and user certificate bundles |
D | Ops client bundles and dev client bundles |
Question 6 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/user/access-ucp/cli-based-access/
Question 7 |
What is the difference between UCP workers and managers?
A | ucp-agent service automatically starts serving all UCP components in worker node, and only a proxy service in manager node |
B | ucp-agent service automatically starts serving all UCP components in manager node, and only a proxy service in worker node |
Question 7 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/architecture/#under-the-hood
Question 8 |
Which of the followings are Docker Engine Security features? (select all that apply)
A | You can configure Docker’s trust features so that your users can push and pull trusted images |
B | You can use certificate-based client-server authentication to verify a Docker daemon has the rights to access images on a registry |
C | You can configure secure computing mode (Seccomp) policies to secure system calls in a container |
D | You can protect the Docker daemon socket and ensure only trusted Docker client connections |
Question 8 Explanation:
Reference:
https://docs.docker.com/engine/security/
Question 9 |
What is the command that need to be executed to sign an image before pushing it to repository?
A | export SIGN_DOCKER_IMAGE=1 |
B | export DOCKER_CONTENT_TRUST=1
|
C | export TRUST_DOCKER_CONTENT=1 |
D | export TRUST_DOCKER_IMAGE=1 |
Question 9 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/
Question 10 |
Docker security scan result is available in both UCP and DTR. True or false?
A | False |
B | True |
Question 10 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/scan-images-for-vulnerabilities/#the-docker-security-scan-process
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 10 questions to complete.
← |
List |
→ |
Return
Shaded items are complete.
| 1 | 2 | 3 | 4 | 5 |
| 6 | 7 | 8 | 9 | 10 |
| End |
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
Correct Answer
You Selected
Not Attempted
Final Score on Quiz
Attempted Questions Correct
Attempted Questions Wrong
Questions Not Attempted
Total Questions on Quiz
Question Details
Results
Date
Score
Hint
Time allowed
minutes
seconds
Time used
Answer Choice(s) Selected
Question Text
All done
Need more practice!
Keep trying!
Not bad!
Good work!
Perfect!
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate (DCA) Certification Test Resources page.
Related Posts
Docker Certified Associate (DCA) Test Review Questions Set 3 - OrchestrationNOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
Docker Certified Associate (DCA) Test Review Questions Set 4 - OrchestrationNOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
Docker Certified Associate (DCA) Test Review Questions Set 7 - Networking Part 1NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…