Multiple Choice
For compliance reasons, an organization needs to ensure that in-scope PCI Kubernetes Pods reside on "in-scope" Nodes only. These Nodes can only contain the "in-scope" Pods. How should the organization achieve this objective?
A) Add a nodeSelector field to the pod configuration to only use the Nodes labeled inscope: true.
B) Create a node pool with the label inscope: true and a Pod Security Policy that only allows the Pods to run on Nodes with that label.
C) Place a taint on the Nodes with the label inscope: true and effect NoSchedule and a toleration to match in the Pod configuration.
D) Run all in-scope Pods in the namespace "in-scope-pci".
Correct Answer:
Verified
Correct Answer:
Verified
Q11: You are the security admin of your
Q12: How should a customer reliably deliver Stackdriver
Q13: A company is running their webshop on
Q14: You are in charge of migrating a
Q15: Your team needs to make sure that
Q17: As adoption of the Cloud Data Loss
Q18: A customer has 300 engineers. The company
Q19: Your team needs to make sure that
Q20: A company's application is deployed with a
Q21: A company is deploying their application on