Valid Terraform-Associate-003 Dumps shared by ExamDiscuss.com for Helping Passing Terraform-Associate-003 Exam! ExamDiscuss.com now offer the newest Terraform-Associate-003 exam dumps, the ExamDiscuss.com Terraform-Associate-003 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com Terraform-Associate-003 dumps with Test Engine here:
Which option cannot be used to keep secrets out of Terraform configuration files?
Correct Answer: D
A secure string is not a valid option to keep secrets out of Terraform configuration files. A secure string is a feature of AWS Systems Manager Parameter Store that allows you to store sensitive data encrypted with a KMS key. However, Terraform does not support secure strings natively and requires a custom data source to retrieve them. The other options are valid ways to keep secrets out of Terraform configuration files. A Terraform provider can expose secrets as data sources that can be referenced in the configuration. Environment variables can be used to set values for input variables that contain secrets. A -var flag can be used to pass values for input variables that contain secrets from the command line or a file. Reference = [AWS Systems Manager Parameter Store], [Terraform AWS Provider Issue #55], [Terraform Providers], [Terraform Input Variables]