Description

HashiCorp Certified: Vault Operations

The Vault Operations Professional exam is designed for Cloud Engineers specializing in deploying, configuring, managing, and monitoring HashiCorp Vault. Well-qualified candidates hold the Vault Associate Certification (or possess equivalent knowledge). Moreover, they have extensive experience operating Vault in production environments. Additionally, they possess the ability to thoroughly evaluate Vault Enterprise functionality and use cases. Certification holders have demonstrated they possess the skills, knowledge, and competency required to perform the Vault operational tasks outlined in the objectives.

Prerequisites

1. Assessment Type* Lab-based and multiple choice
2. Format Online proctored
3. Duration 4 hours; 15-minute break included
4. Price USD 295
5. plus locally applicable taxes and fees
6. Includes free retake
7. Language English
8. Expiration 2 years

Assessment Type

This exam is primarily lab-based, in addition to a shorter multiple-choice section. During the lab scenarios, exam-takers will be tested on performing real-world Vault operational tasks on the command line. The Vault UI and API can also be used where applicable, and exam-takers will have access to the Vault and Vault API documentation.

Preparing for the Exam

Visit the Prepare for Vault Operations Pro Exam page on HashiCorp Learn to initiate your exam prep. Once there, you will find an overview, a study guide, and a review guide. The study guide includes valuable tips and example questions to aid your preparation. Additionally, the review guide provides a direct mapping of documentation and tutorials to study for each exam objective.

Exam Objectives

Create a working Vault server configuration given a scenario

1. Enable and configure secret engines
2. Practice production hardening
3. Auto unseal Vault
4. Implement integrated storage for open source and Enterprise Vault
5. Enable and configure authentication methods
6. Practice secure Vault initialization
7. Regenerate a root token
8. Rekey Vault and rotate encryption keys

Monitor a Vault environment

1. Monitor and understand Vault telemetry
2. Monitor and understand Vault audit logs
3. Monitor and understand Vault operational logs

Employ the Vault security model

1. Describe the secure introduction of Vault clients
2. Describe the security implications of running Vault in Kubernetes

Build fault-tolerant Vault environments

1. Configure a highly available (HA) cluster
2. [Vault Enterprise] Enable and configure disaster recovery (DR) replication
3. [Vault Enterprise] Promote a secondary cluster

Understand the hardware security module (HSM) integration

1.  [Vault Enterprise] Describe the benefits of auto unsealing with HSM
2.  [Vault Enterprise] Describe the benefits and use cases of seal wrap (PKCS#11)

Scale Vault for performance

1. Use batch tokens
2. [Vault Enterprise] Describe the use cases of performance standby nodes
3. [Vault Enterprise] Enable and configure performance replication
4. [Vault Enterprise] Create a path filter

Configure access control

1. Interpret Vault identity entities and groups
2. Write, deploy, and troubleshoot ACL policies
3. [Vault Enterprise] Understand Sentinel policies
4. [Vault Enterprise] Define control groups and describe their basic workflow
5. [Vault Enterprise] Describe and interpret multi-tenancy with namespaces

Configure Vault Agent

1. securely configure auto-auth and token sink
2. Configure templating

TABLE OF CONTENTS

1. Free Chapter
2. Course Introduction
3. Create a Working Vault Server Configuration Given a Scenario
4. Monitor a Vault Environment
5. Employ the Vault Security Model
6. Build Fault-Tolerant Vault Environments
7. Understand the Hardware Security Module (HSM) Integration
8. Scale Vault for Performance
9. Configure Access Control
10. Configure Vault Agent
11. Exam Experience and Expectations

For additional information regarding this training, please visit here.

Contact Locus IT support team for further training details.