Beruflich Dokumente
Kultur Dokumente
DCA
Docker Certified
Associate (DCA) Exam
Version: 7.1
Web: www.dumpsout.com
Email: support@dumpsout.com
IMPORTANT NOTICE
Feedback
We have developed quality product and state-of-art service to ensure our customers interest. If you have any
suggestions, please feel free to contact us at feedback@dumpsout.com
Support
If you have any questions about our product, please provide the following items:
exam code
screenshot of the question
login id/email
please contact us at support@dumpsout.com and our technical experts will provide support within 24 hours.
Copyright
The product of each order has its own encryption code, so you should use it independently. Any unauthorized
changes will inflict legal punishment. We reserve the right of final explanation for this statement.
Practice Test Questions Docker - DCA
Question #:1
Which of the following is NOT backed up when performing a Docker Trusted backup operation?
B. Repository metadata
C. Image blobs
D. DTR configurations
Answer: C
Question #:2
In Docker Trusted Registry, how would a user prevent an image, for example 'nginx:latest' from being
Answer: C
Question #:3
From a DevOps process standpoint, it is best practice to keep changes to an application in version control.
Which of the following will allow changes to a docker Image to be stored in a version control system?
A. docker commit
B. docker save
C. A docker-compose.yml file
D. A dockerfile
Answer: A
Question #:4
Guarantee to Pass 1 of 19
Practice Test Questions Docker - DCA
An application image runs in multiple environments, and each environment uses different certificates and
ports, what is the best practice to deploy the containers?
A. Create a Dockerfile for each environment, specifying ports and ENV variables for certificates.
B. Create a Dockerfile for each environment, specifying ports and Docker secrets for certificates.
C. Create images that contain the specific configuration for every environment.
Answer: D
Question #:5
Answer: B
Question #:6
A service 'wordpress' is running using a password string to connect to a non-Dockerized database service. The
password string is passed into the 'wordpress' service as a Docker secret. Per security policy, the password on
the database was changed. Identity the correct sequence of steps to rotate the secret from the old password to
the new password.
A. Create a new docker secret with the new password. Trigger a rolling secret update by using the 'docker
secret update' command
B. Trigger an update to the service by using 'docker service update --secret=<new password>'
C. Create a new docker secret with the new password. Remove the existing service using 'docker service
rm'. Start a new service with the new secret using "--secret=<new password>"
D. Create a new docker secret with a new password. Trigger a rolling update of the "wordpress" service, by
using "--secret-rm" & "--secret-add" to remove the old secret and add the updated secret.
Answer: D
Question #:7
Guarantee to Pass 2 of 19
Practice Test Questions Docker - DCA
You have created a Docker bridge network on a host with three containers attached, how do you make this
containers accessible outside of the host?
B. Use either EXPOSE or --publish to access the containers on the bridge network
Correct
Answer: B
Question #:8
Which of the following is true about using the '-P' option when creating a new container?
A. Docker binds each exposed container port to a random port on all the host's interface
C. Docker binds each exposed container port to a random port on a specified host interface
D. Docker binds each exposed container port with the same port on the host
Answer: A
Explanation
Controllare
Question #:9
How do you configure Docker engine to use a registry that is not configured with TLS certificates from a
trusted CA?
B. Set and export the IGNORE_TLS environment variable on the command line
Answer: D
Guarantee to Pass 3 of 19
Practice Test Questions Docker - DCA
Question #:10
Which of the following commands will create a swarm service which only listens on port 53 using the UDP
protocol?
networking.protocol.udp=true dns-cache
Answer: A
Question #:11
A. Overlay networks are created only on the manager node that you created the overlay
networking on
B. Overlay networks are created on all cluster nodes when you create the overlay network.
C. Overlay networks are first created on the manager nodes. Then they are created on the
Answer: B
Explanation
Question #:12
Which one of the following commands will show a list of volumes for a specific container?
Guarantee to Pass 4 of 19
Practice Test Questions Docker - DCA
Answer: B
Question #:13
You have just executed 'docker swarm leave' on a node. What command can be run on the same node to
confirm it has left the cluster?
A. docker node ls
Answer: B
Question #:14
Following the principle of least privilege, which of the following methods can be used to securely grnt access
to the specific user to communicate to a Docker engine? (Choose two.)
A. Utilize the '--host 0.0.0.0:2375' option to the Docker daemon to listen on port 2375 over
B. Utilize openssl to create TLS client and server certificates, configuring the Docker engine to
C. Utilize the '--host 127.0.0.1:2375' option to the Docker daemon to listen on port 2375 over
TCP on localhost
D. Give the user root access to the server to allow them to run Docker commands as root.
E. Add the user to the 'docker' group on the server or specify the grouè with the '--group' Docker daemon
option.
Answer: B E
Question #:15
What is the difference between a resource limit and a resource reservation when scheduling services?
Guarantee to Pass 5 of 19
Practice Test Questions Docker - DCA
B. A resource limit is a soft limit for your service, while a reservation is hard limit and the docker engine
will do its best to keep your service at the limit.
C. A resource limit is used to find a host with adequate resources for scheduling a hard limit for your
service, while a reservation is hard limit for your service.
D. A resource limit is hard limit for your service, while a reservation is used to find a host with adequate
Answer: A
Question #:16
Which set of commands can identify the publishd port(s) for a container? (Choose 1.)
Answer: B
Question #:17
The output of which command can be used to find the architecture and operating system an image is
compatible with?
Answer: C
Question #:18
If installing Docker using devicemapper for storage with the Intent to run production workloads, how should
devicemapper be configured
A.
Guarantee to Pass 6 of 19
Practice Test Questions Docker - DCA
A. direct-lvm
B. loop-lvm
C. overlay-lvm
D. aufs-lvm
Answer: A
Question #:19
What is the difference between the ADD and COPY dockerfile instructions? (choosen 2)
Answer: D E
Question #:20
C. CMD is used to run the software is the image along with any arguments
Answer: A
Question #:21
B. Provide a new user instructions for how to login to the Universal Control Plane
C.
Guarantee to Pass 7 of 19
Practice Test Questions Docker - DCA
C. Provide a user with a Docker client binary compatible with the Universal Control Plane
Answer: A
Question #:22
You have deployed a service to swarm. Which command uses the Docker CLI to set the number of tasks of the
services to 5? (choose 2)
Answer: A E
Question #:23
A. Garbage collection removes unreferenced image layers from DTR's backend storage.
C. Garbage collection removes DTR images that are older than a configurable of days
Answer: A
Question #:24
Guarantee to Pass 8 of 19
Practice Test Questions Docker - DCA
Answer: A
Question #:25
Which of the following commands starts a Redis container and configures it to always restart unless it is
Answer: C
Question #:26
Bob intends to use the command 'docker service update --replicas=3 web'.
A. Bob's command results in an error. Alice's command updates the number of replicas of the 'web' service
to 3.
B. Bob's command only updates the service definition, but no new replicas are started. Alice's command
C. Bob's command updates the number of replicas of the 'web' service to 3. Alice's command results in an
error.
D. Both Bob's and Alice's commands result in exactly the same outcome, which is 3 instances of the 'web'
service.
Answer: D
Question #:27
A.
Guarantee to Pass 9 of 19
Practice Test Questions Docker - DCA
Answer: A
Question #:28
What service mode is used to deploy a single task of a service to each node?
A. replicated
B. spread
C. universal
D. distributed
E. global
Answer: E
Question #:29
Which command interactively monitors all container activity in the Docker engine?
Answer: B
Question #:30
A. Manage certificates
B. Collect net
C.
Guarantee to Pass 10 of 19
Practice Test Questions Docker - DCA
Answer: C
Question #:31
Answer: A
Explanation
https://docs.docker.com/engine/reference/commandline/swarm/
Question #:32
What is the docker command to find the current logging driver for a running container?
A. docker stats
B. docker info
C. docker config
D. docker inspect
Answer: D
Question #:33
When seven managers are in a swarm cluster how would they be distributed across three datacenters or
availability zones?
A. 5-1-1
B. 3-2-2
C. 3-3-1
Guarantee to Pass 11 of 19
Practice Test Questions Docker - DCA
D. 4-2-1
Answer: B
Question #:34
When using the Docker client to push an image to a registry, what environment variable is used to instruct the
client to perform signing of the image?
A. DOCKER_CONTENT_TRUST=1
B. DOCKER_IMAGE_SIGN=1
C. DOCKER_PUSH_SIGN=1
D. NOTARY_ENABLE=1
Correct
Answer: A
Question #:35
What is the recommended way to configure the daemon flags and environment variables for your Docker
daemon in a platform independent way?
Answer: B
Question #:36
Which of the following namespaces is disabled by default and must be enabled at Docker engine runtime in
order to be used?
A. user
B. pid
C. net
D.
Guarantee to Pass 12 of 19
Practice Test Questions Docker - DCA
D. mnt
Answer: A
Question #:37
After creating a new service named 'http', you notice that the new service is not registering as healthy. How do
you view the list of historical tasks for that service by using the command line?
D. 'docker ps http'
Answer: C
Question #:38
Which of the following commands is used to display system-wide Docker configuration on a host?
A. docker info
B. docker status
C. docker inspect
D. docker system
Answer: A
Question #:39
Which of the following commands wifi automatically create a volume when a container is started?
Answer: A
Guarantee to Pass 13 of 19
Practice Test Questions Docker - DCA
Question #:40
Which of the following are types of namespaces used by Docker to provide isolation? (Choose 2.)
A. Host
B. Network
C. Process ID
D. Authentication
E. Storage
Answer: B C
Question #:41
Which of the following constitutes a production-ready devicemapper configuration for the Docker engine?
A. Create a volume group in devicemapper and utilize the '--dm.thinpooldev' Docker daemon
device
D. Nothing, devicemapper comes ready for production usage out of the box
Answer: C
Explanation
Question #:42
A user is having problems running Docker. Which of the following will start Docker in debug mode?
B. Start the 'dockerd' process manually with the '--logging' flag set to debug
D.
Guarantee to Pass 14 of 19
Practice Test Questions Docker - DCA
D. Start the 'dockerd' process manually with the '--raw-logs' flag set to debug
Answer: A
Question #:43
What is used by the kernel to Isolate resources when running Docker containers?
A. Namespaces
B. Overlay networks
C. Volumes
Answer: D
Question #:44
Which flag for a service would allow a container to consume more than 2 GB of memory only when there is
no memory contention but would also prevent a container from consuming more than 4GB of memory, in any
case?
Answer: C
Question #:45
Which one of the following commands will result in the volume being removed automatically once the
container
has exited?
Guarantee to Pass 15 of 19
Practice Test Questions Docker - DCA
Answer: C
Question #:46
Which of the following commands will ensure that overlay traffic between service tasks is encrypted?
Answer: C
Question #:47
Which of these swarm manager configurations will cause the cluster to be in a lost quorum state?
Answer: A
Question #:48
Answer: D
Question #:49
Guarantee to Pass 16 of 19
Practice Test Questions Docker - DCA
What is one way of directly transferring a Docker Image from one Docker host in another?
B. 'docker commit' to save the image outside of the Docker filesystem. Then transfer the file over to the
target host and 'docker start' to start the container again.
C. There is no way of directly transferring Docker images between hosts. A Docker Registry must be used
ad an intermediary.
D. 'docker save' the image to save it as TAR file and copy it over to the target host. Then use 'docker load'
to un-TAR the image back as a Docker image.
Answer: D
Question #:50
What behavior is expected when a service is created with the following command:
A. All nodes in the cluster will listen on port 8080 and forward to port 80 in the container.
B. Only a single node in the cluster will listen on port 8080 and forward to port 80 in the
container.
C. All nodes in the cluster will listen on port 80 and forward to port 8080 in the container.
D. Only a single node in the cluster will listen on port 80 and forward to port 8080 in the container.
Answer: A
Question #:51
'HEALTCHECK
'
A. Defines the action taken when container health fails, which in this case will kill the container with exit
status 1 B. Defines the health check endpoint on the localhost interface for external monitoring tools to
monitor the health of the docker engine.
B.
Guarantee to Pass 17 of 19
Practice Test Questions Docker - DCA
B. Defines the health check endpoint on the local host interface for containers to monitor the health of the
docker engine.
C. Defines the health check for the containerized application so that the application health can be
monitored by the Docker engine
Answer: A
Question #:52
A server is running low on disk space. What command can be used to check the disk usage of images,
Answer: A
Question #:53
A container named "analytics" that stores results in a volume called "data" was created.
How are the results accessed in "data" with another container called "app2"?
Answer: B
Question #:54
A host machine has four CPUs available and two running containers. The sysadmin would like to assign two
CPUs to each container.
Guarantee to Pass 18 of 19
Practice Test Questions Docker - DCA
A. Set the '--cpuset-cpu's flag to '1.3' on one container and '2.4' on the other container.
C. Set the '--cpuset-cpus' flag of the 'dockerd' process to the value 'even-spread'
D. Set the '--cpu-quota' flag to '1.3' on one container and '2,4' on the other container.
Answer: B
Question #:55
Which of the following modes can be used for service discovery of a Docker swarm service (Pick 2 correct
answers)
Answer: A C
Guarantee to Pass 19 of 19
About dumpsout.com
dumpsout.com was founded in 2007. We provide latest & high quality IT / Business Certification Training Exam
Questions, Study Guides, Practice Tests.
We help you pass any IT / Business Certification Exams with 100% Pass Guaranteed or Full Refund. Especially
Cisco, CompTIA, Citrix, EMC, HP, Oracle, VMware, Juniper, Check Point, LPI, Nortel, EXIN and so on.
We prepare state-of-the art practice tests for certification exams. You can reach us at any of the email addresses listed
below.
Sales: sales@dumpsout.com
Feedback: feedback@dumpsout.com
Support: support@dumpsout.com
Any problems about IT certification or our products, You can write us back and we will get back to you within 24
hours.