CA-003
Access control lists (ACLs)
hard
Question 6 of 24

A team discovers that a Consul agent's ACL token was compromised. They immediately want to revoke that token and replace it with a new one. What is the correct sequence of operations?

ADelete the compromised token; create a new token with the same policies; run consul acl set-agent-token agent <new-token-id>
BRestart the Consul agent to invalidate all tokens
CRun consul acl bootstrap to reset the entire ACL system
DRevoke the token from the UI; the agent will automatically use the default anonymous policy

More Access control lists (ACLs) Questions

24 questions

Full HashiCorp Certified: Consul Associate (003) Practice Test

All topics covered

All HashiCorp Certified: Consul Associate (003) Questions

Browse by topic

Related Questions

Which command initializes the Consul ACL system for the first time and returns the initial managemen...

easy

A Consul operator wants to run CLI commands without specifying a token on every command. Which envir...

easy

An operator creates a Consul ACL policy with the rule below. Which operations does this policy permi...

medium

A Consul operator wants agent ACL tokens to survive agent restarts so they are not lost when the age...

medium

A security engineer needs to assign multiple ACL policies to a single Consul token so that a service...

hard
View all Access control lists (ACLs) questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account