HashiCorp Exam Vault-Associate Topic 9 Question 30 Discussion

Actual exam question for HashiCorp's HashiCorp Certified: Vault Associate (002) exam

Question #: 30
Topic #: 9

[All HashiCorp Certified: Vault Associate (002) Questions]

Which of the following describes usage of an identity group?

ALimit the policies that would otherwise apply to an entity in the group

BWhen they want to revoke the credentials for a whole set of entities simultaneously

CAudit token usage

DConsistently apply the same set of policies to a collection of entities

Show Suggested Answer

Suggested Answer: D

An identity group is a collection of entities that share some common attributes. An identity group can have one or more policies attached to it, which are inherited by all the members of the group. An identity group can also have subgroups, which can further refine the policies and attributes for a subset of entities.

One of the use cases of an identity group is to consistently apply the same set of policies to a collection of entities. For example, an organization may have different teams or departments, such as engineering, sales, or marketing. Each team may have its own identity group, with policies that grant access to the secrets and resources that are relevant to their work. By creating an identity group for each team, the organization can ensure that the entities belonging to each team have the same level of access and permissions, regardless of which authentication method they use to log in to Vault.Reference:Identity: entities and groups | Vault | HashiCorp Developer,vault_identity_group | Resources | hashicorp/vault | Terraform | Terraform Registry

by Shanda at Sep 13, 2024, 11:40 AM

Limited Time Offer

25%

26 days ago

I think the answer is D) Consistently apply the same set of policies to a collection of entities.

upvoted 0 times

...