Docker Certified Associate (DCA) Test Review Questions Set 9 – Security
Docker Certified Associate Test Review Questions Set 9 - Security
Start
Congratulations - you have completed Docker Certified Associate Test Review Questions Set 9 - Security.
You scored %%SCORE%% out of %%TOTAL%%.
Your performance has been rated as %%RATING%%
Your answers are highlighted below.
Question 1 |
Docker security scan result is available in both UCP and DTR. True or false?
A | False |
B | True |
Question 1 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/scan-images-for-vulnerabilities/#the-docker-security-scan-process
Question 2 |
Where do you create Docker Role Based Access Controls (RBAC)?
A | Docker Compose |
B | Docker Trusted Registry |
C | Universal Control Plane |
D | Docker Machine |
Question 2 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/
Question 3 |
Which of the followings are Docker Engine Security features? (select all that apply)
A | You can use certificate-based client-server authentication to verify a Docker daemon has the rights to access images on a registry |
B | You can configure Docker’s trust features so that your users can push and pull trusted images |
C | You can protect the Docker daemon socket and ensure only trusted Docker client connections |
D | You can configure secure computing mode (Seccomp) policies to secure system calls in a container |
Question 3 Explanation:
Reference:
https://docs.docker.com/engine/security/
Question 4 |
What are the steps needed to sign images in a way that UCP trusts them? (select three)
A | Configure Notary client |
B | Approve image sign on UCP |
C | Initialize trust metadata for the repository |
D | Delegate signing to the keys in your UCP client bundle |
Question 4 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/#sign-images-that-ucp-can-trust
Question 5 |
What is the difference between UCP workers and managers?
A | ucp-agent service automatically starts serving all UCP components in manager node, and only a proxy service in worker node |
B | ucp-agent service automatically starts serving all UCP components in worker node, and only a proxy service in manager node |
Question 5 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/architecture/#under-the-hood
Question 6 |
Where is the option to integrate Docker Enterprise with LDAP?
A | Docker Trusted Registry |
B | Docker Machine |
C | Universal Control Plane |
D | Docker Compose |
Question 6 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/admin/configure/external-auth/
Question 7 |
What is a grant made up of in Docker's Role Based Access Controls (RBAC)? (select three)
A | Subject |
B | Role |
C | Certificate |
D | Resource collection |
Question 7 Explanation:
Reference: https://docs.docker.com/datacenter/ucp/2.2/guides/access-control/grant-permissions/
Question 8 |
What is the command that need to be executed to sign an image before pushing it to repository?
A | export DOCKER_CONTENT_TRUST=1
|
B | export TRUST_DOCKER_CONTENT=1 |
C | export TRUST_DOCKER_IMAGE=1 |
D | export SIGN_DOCKER_IMAGE=1 |
Question 8 Explanation:
Reference: https://docs.docker.com/datacenter/dtr/2.3/guides/user/manage-images/sign-images/
Question 9 |
What are the two types of UCP client bundles?
A | Docker UCP client bundles and DTR client bundles |
B | Admin user certificate bundles and user certificate bundles |
C | Ops client bundles and dev client bundles |
D | Docker CLI bundles and Docker web UI bundles |
Question 9 Explanation:
Reference:
https://docs.docker.com/datacenter/ucp/2.2/guides/user/access-ucp/cli-based-access/
Question 10 |
Docker security scan can be started by all users including those with read-only access. True or false?
A | False |
B | True |
Once you are finished, click the button below. Any items you have not completed will be marked incorrect.
Get Results
There are 10 questions to complete.
← |
List |
→ |
Return
Shaded items are complete.
| 1 | 2 | 3 | 4 | 5 |
| 6 | 7 | 8 | 9 | 10 |
| End |
Return
You have completed
questions
question
Your score is
Correct
Wrong
Partial-Credit
You have not finished your quiz. If you leave this page, your progress will be lost.
Correct Answer
You Selected
Not Attempted
Final Score on Quiz
Attempted Questions Correct
Attempted Questions Wrong
Questions Not Attempted
Total Questions on Quiz
Question Details
Results
Date
Score
Hint
Time allowed
minutes
seconds
Time used
Answer Choice(s) Selected
Question Text
All done
Need more practice!
Keep trying!
Not bad!
Good work!
Perfect!
NOTES: For other review question sets and resources, you may want to check Docker Certified Associate (DCA) Certification Test Resources page.
Related Posts
Docker Certified Associate (DCA) Test Review Questions Set 3 - OrchestrationNOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
Docker Certified Associate (DCA) Test Review Questions Set 4 - OrchestrationNOTES: For other review question sets and resources, you may want to check Docker Certified Associate…
Docker Certified Associate (DCA) Test Review Questions Set 7 - Networking Part 1NOTES: For other review question sets and resources, you may want to check Docker Certified Associate…