Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

HashiCorp Exam Terraform-Associate-003 Topic 3 Question 31 Discussion

Actual exam question for HashiCorp's Terraform-Associate-003 exam

Question #: 31
Topic #: 3

[All Terraform-Associate-003 Questions]

You want to use API tokens and other secrets within your team's Terraform workspaces. Where does HashiCorp recommend you store these sensitive values? (Pick the 3 correct responses)

AIn an HCP Terraform/Terraform Cloud variable, with the sensitive option checked.

BIn HashiCorp Vault.

CIn a terraform.tfvars file, securely managed and shared with your team.

DIn a terraform.tfvars file, checked into your version control system.

EIn a plaintext document on a shared drive.

Show Suggested Answer

Suggested Answer: A, B, C

Sensitive values such as API tokens should be stored in a secure way, either in Terraform Cloud variables marked as sensitive or in HashiCorp Vault. Storing secrets in version control systems or plaintext files is not recommended.

References:

Terraform Cloud Environment Variables

by Rocco at Jan 13, 2025, 11:31 PM

Limited Time Offer

25%

Off

Get Premium Terraform-Associate-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Meghan

13 days ago

I don't know, putting secrets in a shared drive sounds like a great way to get them stolen. What could go wrong? *chuckles*

upvoted 0 times

...

Alverta

21 days ago

What is this, amateur hour? Clearly the correct answers are A, B, and C. Who even considers checking secrets into version control? *facepalm*

upvoted 0 times

...

Raymon

23 days ago

Hmm, I'd avoid the shared drive option (E) - that's just asking for trouble. Gotta keep those secrets locked down tight!

upvoted 0 times

...

Callie

25 days ago

I agree, D and E are definitely not recommended. Vault and Terraform Cloud variables are the way to go for maximum security.

upvoted 0 times

Micah

1 days ago

B) In HashiCorp Vault.

upvoted 0 times

...

Trina

5 days ago

A) In an HCP Terraform/Terraform Cloud variable, with the sensitive option checked.

upvoted 0 times

...

...

Alpha

1 months ago

A, B, and C seem like the most secure options. Putting sensitive info in a version control system is a big no-no!

upvoted 0 times

Roosevelt

9 days ago

B) In HashiCorp Vault.

upvoted 0 times

...

Junita

20 days ago

A) In an HCP Terraform/Terraform Cloud variable, with the sensitive option checked.

upvoted 0 times

...

...

Kathrine

1 months ago

I also think using HCP Terraform/Terraform Cloud variables with the sensitive option checked is a good option.

upvoted 0 times

...

Hortencia

1 months ago

I agree with Teri, storing sensitive values in a secure vault is the best practice.

upvoted 0 times

...

Teri

1 months ago

I think we should store them in HashiCorp Vault.

upvoted 0 times

...