Posted by: Pdfprep
Post Date: January 23, 2021
After creating a dynamic credential on a database, the DBA accidentally deletes the credentials on the database itself. When attempting to remove the lease, Vault returns an error stating that the credential cannot be found.
What command can be run to coerce Vault to remove the secret?
A . vault lease -renew
B . vault lease revoke -force -prefix <lease_path>
C . vault revoke -apply
D . vault lease revoke -enforce
Answer: B
Explanation:
The -force flag is meant for recovery when the secret in the target secrets engine was manually deleted.
Leave a Reply