What are some benefits of using Sentinel with Terraform Cloud/Terraform Cloud? Choose three correct answers.

1. A. You can restrict specific resource configurations, such as disallowing the use of CIDR=0.0.0.0/0.
2. B. You can check out and check in cloud access keys
3. C. Sentinel Policies can be written in HashiCorp Configuration Language (HCL)
4. D. Policy-as-code can enforce security best practices
5. E. You can enforce a list of approved AWS AMIs

Correct Answer: ADE
Sentinel is a policy-as-code framework that allows you to define and enforce rules on your Terraform configurations, states, and plans1. Some of the benefits of using Sentinel with Terraform Cloud/Terraform Enterprise are:
•You can restrict specific resource configurations, such as disallowing the use of CIDR=0.0.0.0/0, which would open up your network to the entire internet. This can help you prevent misconfigurations or security vulnerabilities in your infrastructure2.
•Policy-as-code can enforce security best practices, such as requiring encryption, authentication, or compliance standards. This can help you protect your data and meet regulatory requirements3.
•You can enforce a list of approved AWS AMIs, which are pre-configured images that contain the operating system and software you need to run your applications. This can help you ensure consistency, reliability, and performance across your infrastructure4. References =
•1: Terraform and Sentinel | Sentinel | HashiCorp Developer
•2: Terraform Learning Resources: Getting Started with Sentinel in Terraform Cloud
•3: Exploring the Power of HashiCorp Terraform, Sentinel, Terraform Cloud ??
•4: Using New Sentinel Features in Terraform Cloud – Medium

What does state looking accomplish?

1. A. Prevent accidental Prevent accident deletion of the state file
2. B. Blocks Terraform commands from modifying, the state file
3. C. Copies the state file from memory to disk
4. D. Encrypts any credentials stored within the state file

Correct Answer: B
This is what state locking accomplishes, by preventing other users from modifying the state file while a Terraform operation is in progress. This prevents conflicts and data loss.

Which command should you run to check if all code in a Terraform configuration that references multiple modules is properly formatted without making changes?

1. A. terraform fmt -write-false
2. B. terraform fmt -list -recursive
3. C. terraform fmt -check -recursive
4. D. terraform fmt -check

Correct Answer: C
This command will check if all code in a Terraform configuration that references multiple modules is properly formatted without making changes, and will return a non-zero exit code if any files need formatting. The other commands will either make changes, list the files that need formatting, or not check the modules.

You should run terraform fnt to rewrite all Terraform configurations within the current working directory to conform to Terraform-style conventions.

1. A. True
2. B. False

Correct Answer: A
You should run terraform fmt to rewrite all Terraform configurations within the current working directory to conform to Terraform-style conventions. This command applies a subset of the Terraform language style conventions, along with other minor adjustments for readability. It is recommended to use this command to ensure consistency of style across different Terraform codebases. The command is optional, opinionated, and has no customization options, but it can help you and your team understand the code more quickly and easily. References = : Command: fmt : Using Terraform fmt Command to Format Your Terraform Code

How is terraform import run?

1. A. As a part of terraform init
2. B. As a part of terraform plan
3. C. As a part of terraform refresh
4. D. By an explicit call
5. E. All of the above

Correct Answer: D
The terraform import command is not part of any other Terraform workflow. It must be explicitly invoked by the user with the appropriate arguments, such as the resource address and the ID of the existing infrastructure to import. References = [Importing Infrastructure]