Your application artifacts are being built and deployed via a CI/CD pipeline. You want the CI/CD pipeline to securely access application secrets. You also want to more easily rotate secrets in case of a security breach. What should you do?
A) Prompt developers for secrets at build time. Instruct developers to not store secrets at rest.
B) Store secrets in a separate configuration file on Git. Provide select developers with access to the configuration file.
C) Store secrets in Cloud Storage encrypted with a key from Cloud KMS. Provide the CI/CD pipeline with access to Cloud KMS via IAM.
D) Encrypt the secrets and store them in the source code repository. Store a decryption key in a separate repository and grant your pipeline access to it.
Correct Answer:
Verified
Q6: You support an application deployed on Compute
Q7: You deploy a new release of an
Q8: You are part of an organization that
Q9: You support an application running on App
Q10: You support an e-commerce application that runs
Q12: You need to run a business-critical workload
Q13: You are performing a semi-annual capacity planning
Q14: You use Spinnaker to deploy your application
Q15: Your company follows Site Reliability Engineering practices.
Q16: You have a set of applications running
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents