You use a cloud provider account that is shared with other team members. You previously used Terraform to create a load balancer that listens on port 80. After application changes, you updated the Terraform code to change the port to 443.
You run terraform plan and see that the execution plan shows the port changing from 80 to 443 like you intended and step away to grab some coffee.
In the meantime, another team member manually changes the load balancer port to 443 through the cloud provider console before you get back to your desk.
What will happen when you run terraform apply upon returning to your desk?
Which of these statements about HCP Terraform/Terraform Cloud workspaces is false?
When declaring a variable, setting the sensitive argument to true will prevent the value from being stored in the state file.
Infrastructure as Code (laC) can be stored in a version control system along with application code.
If a DevOps team adopts AWS CloudFormation as their standardized method for provisioning public cloud resoruces, which of the following scenarios poses a challenge for this team?
Which command(s) adds existing resources in a public cloud into Terraform state?
You want to use API tokens and other secrets within your team ' s Terraform workspaces. Where does HashiCorp recommend you store these sensitive values?
(Pick 3 correct responses)
You can execute terraform fmt to standardize all Terraform configurations within the current working directory to Terraform’s canonical format and style.
Before you can use a new backend or HCP Terraform/Terraform Cloud integration, you must first execute terraform init.
Terraform configuration (including any module references) can contain only one Terraform provider type.
Which is a benefit of using infrastructure as code (IaC) tools compared to native platform APIs?
What is the Terraform style convention for indenting a nesting level compared to the one above it?
Terraform variables and outputs that set the description argument will store that description in the state file.
Which of the following can you do with terraform plan? (Pick 2 correct responses)
If a module declares a variable with a default, that variable must also be defined within the module.
Exhibit:
module " network " {
source = " terraform-google-modules/network/google "
version = " ~ > 11.0 "
}
What version of the source module does Terraform allow with the module block shown in the exhibit?
It is best practice to store secret data in the same version control repository as your Terraform configuration.
Terraform requires using a different provider for each cloud provider where you want to deploy resources.
How can a ticket-based system slow down infrastructure provisioning and limit the ability to scale? Choose two correct answers.
You add a new provider to your configuration and immediately run terraform apply in the CD using the local backend. Why does the apply fail?
How would you reference the volume IDs associated with the ebs_block_device blocks in this configuration?

You are updating a child module with the resource block shown in the exhibit below. The public_ip attribute of the resource needs to be accessible to the parent module.
Exhibit:
resource " aws_instance " " example " {
ami = " ami-0a123456789abcdef "
instance_type = " t3.micro "
}
How do you meet this requirement?
Which method for sharing Terraform configurations fulfills the following criteria:
1. Keeps the configurations confidential within your organization
2. Support Terraform’s semantic version constrains
3. Provides a browsable directory
A developer launched a VM outside of the Terraform workflow and ended up with two servers with the same name. They are unsure which VM is managed with Terraform, but they do have a list of all active VM IDs. Which method could you use to determine which instance Terraform manages?
You have used Terraform lo create an ephemeral development environment in the (loud and are now ready to destroy all the Infrastructure described by your Terraform configuration To be safe, you would like to first see all the infrastructure that Terraform will delete.
Which command should you use to show all of the resources that mil be deleted? Choose two correct answers.
You want to know from which paths Terraform is loading providers referenced in your Terraform configuration (* files). You need to enable additional logging messages to find this out. Which of the following would achieve this?
Which of the following can you do with terraform plan?
Pick the two correct responses below.
What feature stops multiple users from operating on the Terraform state at the same time?
You are writing a child Terraform module that provisions an AWS instance. You want to reference the IP address returned by the child module in the root configuration. You name the instance resource " main ' .
Which of these is the correct way to define the output value?
You manage two workspaces in your HCP Terraform organization. The first workspace manages your network configuration. The second workspace manages your compute resources and retrieves values from the networking workspace.
What HCP Terraform feature lets you run an apply operation on the compute workspace every time you update the networking workspace?
A module block is shown in the Exhibit space of this page. When you use a module block to reference a module from the Terraform Registry such as the one in the example, how do you specify version 1.0.0 of the module?
What Terraform command always causes a state file to be updated with changes that might have been made outside of Terraform?
Exhibit:
Error: Saved plan is stale
The given plan file can no longer be applied because the state was changed by another operation after the plan was created.
You have a saved execution plan containing desired changes for infrastructure managed by Terraform. After running terraform apply my.tfplan, you receive the error shown. How can you apply the desired changes? (Pick the 2 correct responses below.)
Module version is required to reference a module on the Terraform Module Registry.
When you run terraform apply -refresh-only, which of the following is not consulted by Terraform to update the state file?
What is the Terraform style convention for indenting a nesting level compared to the one above it?
You are using a networking module in your Terraform configuration with the name label my-network. In your main configuration you have the following code:
When you run terraform validate, you get the following error:
What must you do to successfully retrieve this value from your networking module?
You provisioned virtual machines (VMs) on Google Cloud Platform using the gcloud command-line tool.
What must be done to manage these VMs using Terraform instead? Pick the two correct responses.
How would you output returned values from a child module in the Terraform CLI output?
Your root module contains a variable namednum_servers. Which is the correct way to pass its value to a child module with an input namedservers?
Exhibit:
variable " sizes " {
type = list(string)
description = " Valid server sizes "
default = [ " small " , " medium " , " large " ]
}
A variable declaration is shown in the exhibit. Which is the correct way to get the value of medium from this variable?
You ' re building a CI/CD (continuous integration/continuous delivery) pipeline and need to inject sensitive variables into your Terraform run. How can you do this safely?
You are working on some new application features and you want to spin up a copy of your production deployment to perform some quick tests. In order to avoid having to configure a new state backend, what open source Terraform feature would allow you create multiple states but still be associated with your current code?
Which is the best way to specify a tag of v1.0.0 when referencing a module stored in Git (for example.
Git::https://example.com/vpc.git)?

The Terraform configuration shown in the Exhibit space on this page v/ill create a new AWS instance.
In a HCP Terraform/Terraform Cloud workspace linked to a version control repository, speculative plan runs start automatically when you merge or commit changes to version control.
Why is it considered important to treat your Terraform state file as sensitive?
Which of the following locations can Terraform use as aprivate sourcefor modules?(Pick 2 correct responses)
What type of block is used to construct a collection of nested configuration blocks?
Your Terraform configuration declares a variable. You want to enforce that its value meets your specific requirements, and you want to block the Terraform operation if it does not. What should you add to your configuration?
A module block used in your configuration is shown in the exhibit. You have been asked to update the version of this module from 4.2.1 to 5.0.0.
Exhibit:
module " compute " {
source = " Azure/compute/azurerm "
version = " 4.2.1 "
}
Which two steps must you take to accomplish this?
How could you reference an attribute from the vsphere_datacenter data source for use with the datacenter_id argument within the vsphere_folder resource in the following configuration?
You have created a main.tf Terraform configuration consisting of an application server, a database and a load balanced. You ran terraform apply and Terraform created all of the resources successfully.
Now you realize that you do not actually need the load balancer, so you run terraform destroy without any flags. What will happen?
All modules published on the official Terraform Module Registry have been verified by HasihCorp.
You have a simple Terraform configuration containing one virtual machine (VM) in a cloud provider. You run terraform apply and the VM is created successfully.
What will happen if you delete the VM using the cloud provider console, then run terraform apply again without changing any Terraform code?
You created infrastructure outside the Terraform workflow that you now want to manage using Terraform. Which command brings the infrastructure into Terraform state?
Your security team scanned some Terraform workspaces and found secrets stored in plaintext in state files. How can you protect that data?
You just upgraded the version of a provider in an existing Terraform project. What do you need to do to install the new provider?
Which of the following is availableonlyinHCP Terraform workspacesandnot in Terraform CLI?
You have multiple team members collaborating on infrastructure as code (IaC) using Terraform, and want to apply formatting standards for readability.
How can you format Terraform HCL (HashiCorp Configuration Language) code according to standard Terraform style convention?
Which method for sharing Terraform modules fulfills the following criteria:
Keeps the module configurations confidential within your organization.
Supports Terraform ' s semantic version constraints.
Provides a browsable directory of your modules.
What information does the public Terraform Module Registry automatically expose about published modules?
You can configure multiple cloud blocks in your Terraform configuration to connect your workspace to both HCP Terraform and your Terraform Enterprise instance.