beginner

What is the main purpose of secret management tools like Vault or Secrets Manager?

They securely store, manage, and control access to sensitive information such as passwords, API keys, and certificates.

Click to reveal answer

intermediate

How does HashiCorp Vault protect secrets?

Vault encrypts secrets before storing them and controls access through policies and authentication methods.

Click to reveal answer

intermediate

In Terraform, how do you typically retrieve a secret from AWS Secrets Manager?

By using the data source `aws_secretsmanager_secret_version` to fetch the secret value during Terraform runs.

Click to reveal answer

beginner

Why should secrets not be hardcoded in Terraform configuration files?

Hardcoding secrets risks accidental exposure in version control and logs, reducing security.

Click to reveal answer

intermediate

What is a common method to authenticate Terraform with Vault?

Using a Vault token or AppRole authentication to securely access secrets during Terraform runs.

Click to reveal answer

Which Terraform resource is used to fetch a secret from AWS Secrets Manager?

Aaws_secretsmanager_secret_version

Baws_secret

Caws_vault_secret

Daws_secret_manager

What does Vault use to control access to secrets?

ARoles only

BBuckets

CGroups

DPolicies

Why is it important to avoid storing secrets directly in Terraform files?

ATerraform does not support secrets

BIt can cause syntax errors

CIt risks exposing secrets in version control

DIt slows down Terraform runs

Which authentication method is commonly used by Terraform to access Vault?

AAppRole

BOAuth

CSAML

DLDAP

What is a key benefit of using a secret manager service?

AAutomatic code generation

BCentralized and secure secret storage

CFaster application deployment

DReduced cloud costs

Explain how Terraform integrates with Vault or AWS Secrets Manager to manage secrets securely.

Describe best practices for secret management in cloud infrastructure using Vault or Secrets Manager.