DCA Exam Questions

Total 166 Questions

Last Updated Exam : 16-Dec-2024

A container named "analytics" that stores results in a volume called "data" was created.
docker run -d -name=analytics -v data:/data app1
How are the results accessed in "data" with another container called "app2"?


A.

docker run -d --name=reports --volume=data app2


B.

docker run -d --name=reports --volumes-from=analytics app2


C.

docker run -d --name=reports --volume=app1 app2


D.

docker run -d --name=reports --mount=app1 app2





B.
  

docker run -d --name=reports --volumes-from=analytics app2



Following the principle of least privilege, which of the following methods can be used to securely grnt access to the specific user to communicate to a Docker engine? (Choose two.)


A.

Utilize the '--host 0.0.0.0:2375' option to the Docker daemon to listen on port 2375 over
TCP on all interfaces


B.

Utilize openssl to create TLS client and server certificates, configuring the Docker engine to
use with mutual TLS over TCP.


C.

Utilize the '--host 127.0.0.1:2375' option to the Docker daemon to listen on port 2375 over
TCP on localhost


D.

Give the user root access to the server to allow them to run Docker commands as root.


E.

Add the user to the 'docker' group on the server or specify the grouè with the '--group' Docker daemon
option.





B.
  

Utilize openssl to create TLS client and server certificates, configuring the Docker engine to
use with mutual TLS over TCP.



E.
  

Add the user to the 'docker' group on the server or specify the grouè with the '--group' Docker daemon
option.



What behavior is expected when a service is created with the following command:
'docker service create -publish 8000:80 nginx'


A.

All nodes in the cluster will listen on port 8080 and forward to port 80 in the container.


B.

Only a single node in the cluster will listen on port 8080 and forward to port 80 in the
container.


C.

All nodes in the cluster will listen on port 80 and forward to port 8080 in the container.


D.

Only a single node in the cluster will listen on port 80 and forward to port 8080 in the container.





A.
  

All nodes in the cluster will listen on port 8080 and forward to port 80 in the container.



In Docker Trusted Registry, how would a user prevent an image, for example 'nginx:latest' from being
overwritten by another user with push access to the repository?


A.

Tag the image with 'nginx:immutable'


B.

Remove push access from all other users.


C.

Use the DTR web UI to make the tag immutable.


D.

Keep a backup copy of the image on another repository





C.
  

Use the DTR web UI to make the tag immutable.



Which of the following commands is used to display system-wide Docker configuration on a host?


A.

docker info


B.

docker status


C.

docker inspect


D.

docker system





A.
  

docker info



You have just executed 'docker swarm leave' on a node. What command can be run on the same node to
confirm it has left the cluster?


A.

docker node ls


B.

docker system info


C.

docker system status


D.

docker system status





B.
  

docker system info



Which of these swarm manager configurations will cause the cluster to be in a lost quorum state?


A.

4 managers of which 2 are healthy


B.

1 manager of which 1 is healthy


C.

3 managers of which 2 are healthy


D.

5 managers of which 3 are healthy





A.
  

4 managers of which 2 are healthy



Which statement is true?


A.

CMD shell format uses this form ["param", param", "param"]


B.

ENTRYPOINT cannot be used in conjuction with CMD


C.

CMD is used to run the software is the image along with any arguments


D.

ENTRYPOINT cannot be overriden in the "docker container run" command





A.
  

CMD shell format uses this form ["param", param", "param"]



Wha is the purpose of Docker Content Trust?


A.

Signing and verification of image tags


B.

Enabling mutual TLS between the Docker client and server


C.

Docker registry TLS verification and encryption


D.

Indicating an image on Docker Hub is an official image





A.
  

Signing and verification of image tags



The following health check exists in a Dockerfile:
'HEALTCHECK
CMD curl -fail http://localhost/health || exit 1'
Which of the following describes its purpose?


A.

Defines the action taken when container health fails, which in this case will kill the container with exit
status 1 B. Defines the health check endpoint on the localhost interface for external monitoring tools to
monitor the health of the docker engine.


B.

Defines the health check endpoint on the local host interface for containers to monitor the health of the
docker engine.


C.

Defines the health check for the containerized application so that the application health can be
monitored by the Docker engine





A.
  

Defines the action taken when container health fails, which in this case will kill the container with exit
status 1 B. Defines the health check endpoint on the localhost interface for external monitoring tools to
monitor the health of the docker engine.




Page 3 out of 17 Pages
Previous