Linux Foundation Exam CKS Topic 5 Question 76 Discussion

Actual exam question for Linux Foundation's CKS exam

Question #: 76
Topic #: 5

[All CKS Questions]

A container image scanner is set up on the cluster.

Given an incomplete configuration in the directory

/etc/kubernetes/confcontrol and a functional container image scanner with HTTPS endpoint https://test-server.local.8081/image_policy

1. Enable the admission plugin.

2. Validate the control configuration and change it to implicit deny.

Finally, test the configuration by deploying the pod having the image tag as latest.

AExplanation:
ssh-add ~/.ssh/tempprivate
eval '$(ssh-agent -s)'
cd contrib/terraform/aws
vi terraform.tfvars
terraform init
terraform apply -var-file=credentials.tfvars
ansible-playbook -i ./inventory/hosts ./cluster.yml -e ansible_ssh_user=core -e bootstrap_os=coreos -b --become-user=root --flush-cache -e ansible_user=core

Show Suggested Answer

Suggested Answer: A

by Nicolette at Mar 22, 2025, 06:03 AM

Limited Time Offer

25%

14 days ago

Hmm, this seems pretty straightforward. The question is asking us to enable the admission plugin and validate the control configuration, then test the configuration by deploying a pod with the latest image tag.

upvoted 0 times

Avery

23 hours ago

Let's start by enabling the admission plugin.

upvoted 0 times

...