- (Topic 1)
Your company's security policies require that all encryption keys must be rotated at least once per year. After using the Transit secrets engine for a year, the Vault admin issues the proper command to rotate the key named ecommerce that was used to encrypt your data. What command can be used to easily re-encrypt the original data with the new version of the key?

Correct Answer:D

- (Topic 4)
True or False? Your organization currently runs all of its workloads on Google Cloud Platform (GCP). Recently, Vault has been deployed, and you need to select an auth method to authenticate your workloads with Vault. Based on this information, GCP is the only auth method that can be used in your environment.

Correct Answer:B

- (Topic 5)
When using Integrated Storage, which of the following should you do to recover from possible data loss?

Correct Answer:B

- (Topic 1)
Jason has enabled the userpass auth method at the path users/. What path would Jason and other Vault operators use to interact with this new auth method?

Correct Answer:C

- (Topic 2)
Holly has discovered that a highly privileged dynamic credential with a very long lease time was created, which could negatively impact the organization??s security. What command can Holly use to invalidate the credential so it can??t be used without affecting other credentials?

Correct Answer:A

- (Topic 4)
A MySQL server has been deployed on Google Cloud Platform (GCP) to support a legacy application. You want to generate dynamic credentials against this MySQL server rather than use static credentials. What Vault secrets engine would you use to accomplish this?

Correct Answer:C