You are working on a new project and need to retrieve a secret from Vault. You log into the Vault UI and browse to the path where the secret is stored. Based on the screenshot below, what is true about the secrets stored in this path? (Select four)
A.
The secrets are stored in a KV v1 secrets engine
B.
The user does not have permission to delete the secret
C.
The secrets are stored in a KV v2 secrets engine
D.
The secrets engine is mounted at the path developers/
E.
There are four previous versions of the secret
F.
The user has additional permissions on the path beyond just list and read
Assuming the screenshot shows a KV secrets engine at developers/ with version 5 of a secret and options for delete/create:
C: KV v2 is indicated by versioning (version 5 and four previous versions). KV v1 doesn’t support versioning, per the KV v2 documentation.
D: The path developers/ is the mount point, as secrets are accessed under this path, consistent with Vault’s mount structure.
E: Four previous versions (v1–v4) exist if v5 is current, a feature of KV v2’s versioning.
F: Delete and create options in the UI imply permissions beyond list and read, such as delete and create or update, per Vault’s UI behavior reflecting policy capabilities.
A: KV v1 lacks versioning, so this is incorrect.
B: The delete option’s presence suggests permission exists, though UI visibility isn’t a definitive policy check—still, it’s typically indicative.
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit