Halloween Sale - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 65percent

Welcome To DumpsPedia

DCA Sample Questions Answers

Questions 4

Will this command ensure that overlay traffic between service tasks is encrypted?

Solution. docker network create -d overlay --secure

Options:

A.

Yes

B.

No

Buy Now
Questions 5

Are these conditions sufficient for Kubernetes to dynamically provision a persistentVolume, assuming there are no limitations on the amount and type of available external storage?

Solution: A default provisioner is specified, and subsequently a persistentVolumeClaim is created.

Options:

A.

Yes

B.

No

Buy Now
Questions 6

Is this statement correct?

Solution: A Dockerfile provides instructions for building a Docker image

Options:

A.

Yes

B.

No

Buy Now
Questions 7

In the context of a swarm mode cluster, does this describe a node?

Solution. an instance of the Docker CLI connected to the swarm

Options:

A.

Yes

B.

No

Buy Now
Questions 8

Will this Linux kernel facility limit a Docker container's access to host resources, such as CPU or memory?

Solution. capabilities

Options:

A.

Yes

B.

No

Buy Now
Questions 9

The Kubernetes yaml shown below describes a networkPolicy.

Will the networkPolicy BLOCK this trafftc?

Solution. a request issued from a pod bearing only the tier: frontend label, to a pod bearing the tier: backend label

Options:

A.

Yes

B.

No

Buy Now
Questions 10

The Kubernetes yaml shown below describes a networkPolicy.

Will the networkPolicy BLOCK this traffic?

Solution: a request issued from a pod lacking the tier: api label, to a pod bearing the tier: backend label

Options:

A.

Yes

B.

No

Buy Now
Questions 11

The following Docker Compose file is deployed as a stack:

Is this statement correct about this health check definition?

Solution. Health checks lest for app health ten seconds apart. Three failed health checks transition the container into "unhealthy" status.

Options:

A.

Yes

B.

No

Buy Now
Questions 12

Will this command list all nodes in a swarm cluster from the command line?

Solution. ‘docker inspect nodes

Options:

A.

Yes

B.

No

Buy Now
Questions 13

A user's attempts to set the system time from inside a Docker container are unsuccessful.

Could this be blocking this operation?

Solution. SELinux

Options:

A.

Yes

B.

No

Buy Now
Questions 14

An application image runs in multiple environments, with each environment using different certificates and ports.

Is this a way to provision configuration to containers at runtime?

Solution: Provision a Docker config object for each environment.

Options:

A.

Yes

B.

No

Buy Now
Questions 15

In the context of a swarm mode cluster, does this describe a node?

Solution: an instance of the Docker engine participating in the swarm

Options:

A.

Yes

B.

No

Buy Now
Questions 16

You want to create a container that is reachable from its host's network.

Does this action accomplish this?

Solution. Use network connect to access the container on the bridge network.

Options:

A.

Yes

B.

No

Buy Now
Questions 17

You want to create a container that is reachable from its host's network.

Does this action accomplish this?

Solution: Use network attach to access the container on the bridge network.

Options:

A.

Yes

B.

No

Buy Now
Questions 18

The Kubernetes yaml shown below describes a networkPolicy.

Will the networkPolicy BLOCK this trafftc?

Solution. a request issued from a pod bearing the tier: api label, to a pod bearing the tier: backend label

Options:

A.

Yes

B.

No

Buy Now
Questions 19

The Kubernetes yaml shown below describes a networkPolicy.

Will the networkPolicy BLOCK this traffic?

Solution: a request issued from a pod bearing the tier: backend label, to a pod bearing the tier: frontend label

Options:

A.

Yes

B.

No

Buy Now
Questions 20

You configure a local Docker engine to enforce content trust by setting the environment variable

DOCKER_CONTENT_TRUST=1.

If myorg/myimage: 1.0 is unsigned, does Docker block this command?

Solution: docker image inspect myorg/myimage: 1.0

Options:

A.

Yes

B.

No

Buy Now
Questions 21

Will this command mount the host's '/data' directory to the ubuntu container in read-only mode?

Solution: 'docker run -v /data:/mydata --mode readonly ubuntu'

Options:

A.

Yes

B.

No

Buy Now
Questions 22

You want to create a container that is reachable from its host's network.

Does this action accomplish this?

Solution. Use either EXPOSE or -publish to access the container on the bridge network.

Options:

A.

Yes

B.

No

Buy Now
Questions 23

Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate?

Solution. Set and export the IGNORE_TLS environment variable on the command line.

Options:

A.

Yes

B.

No

Buy Now
Questions 24

Are these conditions sufficient for Kubernetes to dynamically provision a persistentVolume, assuming there are no limitations on the amount and type of available external storage?

Solution: A persistentVolumeClaim is created that specifies a pre-defined provisioner.

Options:

A.

Yes

B.

No

Buy Now
Questions 25

Two development teams in your organization use Kubernetes and want to deploy their applications while ensuring that Kubernetes-specific resources, such as secrets, are grouped together for each application.

Is this a way to accomplish this?

Solution: Create one pod and add all the resources needed for each application

Options:

A.

Yes

B.

No

Buy Now
Questions 26

Is this a type of Linux kernel namespace that provides container isolation?

Solution. Host

Options:

A.

Yes

B.

No

Buy Now
Questions 27

Will this command display a list of volumes for a specific container?

Solution: 'docker container inspect nginx'

Options:

A.

Yes

B.

No

Buy Now
Questions 28

Is this an advantage of multi-stage builds?

Solution. better logical separation of Dockerfile instructions for increased readability

Options:

A.

Yes

B.

No

Buy Now
Questions 29

Your organization has a centralized logging solution, such as Splunk.

Will this configure a Docker container to export container logs to the logging solution?

Solution. docker run -- log driver=splunk for every container at run time

Options:

A.

Yes

B.

No

Buy Now
Questions 30

Will a DTR security scan detect this?

Solution. image configuration poor practices, such as exposed ports or inclusion of compilers in production images

Options:

A.

Yes

B.

No

Buy Now
Questions 31

The following Docker Compose file is deployed as a stack:

Is this statement correct about this health check definition?

Solution: Health checks test for app health five seconds apart. If the test fails, the container will be restarted three times before it gets rescheduled.

Options:

A.

Yes

B.

No

Buy Now
Questions 32

Does this command create a swarm service that only listens on port 53 using the UDP protocol?

Solution. ‘docker service create -name dns-cache -p 53:53 -udp dns-cache’

Options:

A.

Yes

B.

No

Buy Now
Questions 33

Will This command list all nodes in a swarm cluster from the command line?

Solution. ‘docker swarm nodes'

Options:

A.

Yes

B.

No

Buy Now
Questions 34

Will this configuration achieve fault tolerance for managers in a swarm?

Solution: an odd number of manager nodes, totaling more than two

Options:

A.

Yes

B.

No

Buy Now
Questions 35

One of several containers in a pod is marked as unhealthy after failing its livenessProbe many times. Is this the action taken by the orchestrator to fix the unhealthy container?

Solution: The controller managing the pod is autoscaled back to delete the unhealthy pod and alleviate load.

Options:

A.

Yes

B.

No

Buy Now
Questions 36

Your organization has a centralized logging solution, such as Splunk.

Will this configure a Docker container to export container logs to the logging solution?

Solution: docker system events --filter splunk

Options:

A.

Yes

B.

No

Buy Now
Questions 37

Seven managers are in a swarm cluster.

Is this how should they be distributed across three datacenters or availability zones?

Solution: 3-3-1

Options:

A.

Yes

B.

No

Buy Now
Questions 38

A company's security policy specifies that development and production containers must run on separate nodes in a given Swarm cluster.

Can this be used to schedule containers to meet the security policy requirements?

Solution: resource reservation

Options:

A.

Yes

B.

No

Buy Now
Questions 39

Is this the purpose of Docker Content Trust?

Solution. Indicate an image on Docker Hub is an official image.

Options:

A.

Yes

B.

No

Buy Now
Questions 40

Will this configuration achieve fault tolerance for managers in a swarm?

Solution: one manager node for two worker nodes

Options:

A.

Yes

B.

No

Buy Now
Questions 41

Will a DTR security scan detect this?

Solution: licenses for known third party binary components

Options:

A.

Yes

B.

No

Buy Now
Questions 42

Does this command create a swarm service that only listens on port 53 using the UDP protocol?

Solution. ‘docker service create -name dns-cache -p 53:53/udp dns-cache"

Options:

A.

Yes

B.

No

Buy Now
Questions 43

Seven managers are in a swarm cluster.

Is this how should they be distributed across three datacenters or availability zones?

Solution: 4-2-1

Options:

A.

Yes

B.

No

Buy Now
Questions 44

Is this an advantage of multi-stage builds?

Solution: simultaneously creates and tags multiple images

Options:

A.

Yes

B.

No

Buy Now
Questions 45

Is this a type of Linux kernel namespace that provides container isolation?

Solution. Process ID

Options:

A.

Yes

B.

No

Buy Now
Questions 46

In Docker Trusted Registry, is this how a user can prevent an image, such as 'nginx:latest’, from being overwritten by another user with push access to the repository?

Solution: Remove push access from all other users.

Options:

A.

Yes

B.

No

Buy Now
Questions 47

Can this set of commands identify the published port(s) for a container?

Solution. ‘docker port inspect", docker container inspect"

Options:

A.

Yes

B.

No

Buy Now
Questions 48

You configure a local Docker engine to enforce content trust by setting the environment variable

DOCKER_CONTENT_TRUST=1.

If myorg/myimage: 1.0 is unsigned, does Docker block this command?

Solution: docker service create myorg/myimage:1.0

Options:

A.

Yes

B.

No

Buy Now
Questions 49

You add a new user to the engineering organization in DTR.

Will this action grant them read/write access to the engineering/api repository?

Solution: Add them to a team in the engineering organization that has read/write access to the engineering/api repository.

Options:

A.

Yes

B.

No

Buy Now
Questions 50

You are troubleshooting a Kubernetes deployment called api, and want to see the events table for this object. Does this command display it?

Solution: kubectl logs deployment api

Options:

A.

Yes

B.

No

Buy Now
Questions 51

A Kubernetes node is allocated a /26 CIDR block (64 unique IPs) for its

address space.

If every pod on this node has exactly two containers in it, how many pods can

this address space support on this node?

Options:

A.

-995

B.

64

C.

32 in every Kubernetes namespace

D.

64 for every service routing to pods on this node

E.

32

Buy Now
Questions 52

You configure a local Docker engine to enforce content trust by setting the environment variable

DOCKER_CONTENT_TRUST=1.

If myorg/myimage: 1.0 is unsigned, does Docker block this command?

Solution: docker container run myorg/myimage:1.0

Options:

A.

Yes

B.

No

Buy Now
Questions 53

You created a new service named 'http* and discover it is not registering as healthy. Will this command enable you to view the list of historical tasks for this service?

Solution. ‘docker inspect http"

Options:

A.

Yes

B.

No

Buy Now
Questions 54

Is this an advantage of multi-stage builds?

Solution: better caching when building Docker images

Options:

A.

Yes

B.

No

Buy Now
Exam Code: DCA
Exam Name: Docker Certified Associate (DCA) Exam
Last Update: Oct 24, 2024
Questions: 183
$56  $159.99
$42  $119.99
$35  $99.99
buy now DCA