Which option cannot be used to keep secrets out of Terraform configuration files?
- A.Environment Variables
- B.Mark the variable as sensitive
- C.A Terraform provider
- D.A -var flag
hashicorp · Terraform-Associate · Q428 · multiple_choice · topic_1
Which option cannot be used to keep secrets out of Terraform configuration files?
Explanation
Selected Answer: B
It's B
The sensitive flag only prevents secret from showing up in the CLI outputs, but the value itself is still present in the configuration files.
Reference: examtopics_top_comment
Practice with progress tracking
Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.