KCSA
Overview of Cloud Native Security
medium
Question 4 of 28

During the distribute phase, a platform team wants to reduce unauthorized pulls of internal container images. Where should those images be placed?

AA public registry with obscured names
BA private registry that only authorized clients can pull from
CA ConfigMap inside the cluster
DA local cache on a single worker node

More Overview of Cloud Native Security Questions

28 questions

Full Kubernetes and Cloud Native Security Associate Practice Test

All topics covered

All Kubernetes and Cloud Native Security Associate Questions

Browse by topic

Related Questions

A security instructor explains the 4Cs model for cloud native security. Which layer is the outermost...

easy

A team wants every Pod restart to use the exact same image content even if someone later retags the ...

easy

A release team already scanned and signed its images. Before workloads are admitted, it now wants to...

medium

A Pod in namespace payments must pull from a private registry. Where must the referenced imagePullSe...

medium

In a multi-tenant cluster, an image has already been pulled onto a node once. The security team want...

hard
View all Overview of Cloud Native Security questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account