Linux Foundation Exam CKS Topic 4 Question 74 Discussion

Actual exam question for Linux Foundation's CKS exam

Question #: 74
Topic #: 4

[All CKS Questions]

A container image scanner is set up on the cluster.

Given an incomplete configuration in the directory

/etc/kubernetes/confcontrol and a functional container image scanner with HTTPS endpoint https://test-server.local.8081/image_policy

1. Enable the admission plugin.

2. Validate the control configuration and change it to implicit deny.

Finally, test the configuration by deploying the pod having the image tag as latest.

AExplanation:
ssh-add ~/.ssh/tempprivate
eval '$(ssh-agent -s)'
cd contrib/terraform/aws
vi terraform.tfvars
terraform init
terraform apply -var-file=credentials.tfvars
ansible-playbook -i ./inventory/hosts ./cluster.yml -e ansible_ssh_user=core -e bootstrap_os=coreos -b --become-user=root --flush-cache -e ansible_user=core

Show Suggested Answer

Suggested Answer: A

by Fanny at Feb 09, 2025, 06:04 AM

Limited Time Offer

25%

23 days ago

Wait, I'm supposed to enable the admission plugin, but the question doesn't even mention which one? This is confusing.

upvoted 0 times

Laurena

17 hours ago

After enabling the admission plugin, make sure to test the configuration by deploying a pod with the latest image tag.

upvoted 0 times

...

Aracelis

2 days ago

You can enable the admission plugin by editing the configuration file in the directory.

upvoted 0 times

...