Notifications
Clear all
Topic starter
13/07/2022 1:31 am
Your manager has instructed you to start using terraform for your day-to-day operations, but your security team is concerned about the terraform state files. They have heard it contains confidential information, and are worried that it will not be securely protected.
What should be your response to the security team in this regard?
- A . Inform the security team that using terraform state is optional. There are ways to avoid it, and you will do the same.
- B . Ensure that the state is managed in a remote backend, preferably an enterprise grade state management system like Terraform Cloud.
- C . Mask the confidential entries in the terraform state file, using Vault Enterprise, another Hashicorp product, while keeping it locally.
- D . Keep the state file locally on each developer machine, and ensure that there is a local protection software like KeyPass protecting it.
Suggested Answer: B
Explanation:
https://www.terraform.io/docs/state/index.html
State is very important topic for exam. Please read all of the below subtopics Purpose
Import Existing Resources
Locking
Workspaces
Remote State
Sensitive Data
Explanation:
https://www.terraform.io/docs/state/index.html
State is very important topic for exam. Please read all of the below subtopics Purpose
Import Existing Resources
Locking
Workspaces
Remote State
Sensitive Data