All Vault instances, or clusters, include two built-in policies that are created automatically. Choose the two policies below and the correct information regarding each policy. (Select two)
A.
The root policy is created automatically. This policy provides superuser privileges and cannot be deleted
B.
The admin policy is created automatically. It provides administrative permissions but can be deleted if needed
C.
The default policy is created automatically. This policy can be modified but not deleted
D.
The default policy is created automatically. This policy cannot be modified but it can be deleted
Vault automatically creates two built-in policies: root and default.
A : The root policy is created at initialization, granting superuser privileges (full access to all paths and operations). It’s attached to root tokens and cannot be deleted or modified, per the policies documentation.
C : The default policy is also created automatically, providing basic permissions (e.g., token management). It’s attached to all non-root tokens by default, can be modified, but cannot be deleted, as stated in the docs.
B : No admin policy is automatically created; administrative policies must be defined manually.
D : The default policy can be modified, contradicting this option.
[References:, Built-in Policies, ]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit