Free DCA Sample Questions — Docker Certified Associate

Free DCA sample questions for the Docker Certified Associate exam. No account required: study at your own pace.

Want an interactive quiz? Take the full DCA practice test

Looking for more? Click here to get the full PDF with 58+ practice questions for $10 for offline study and deeper preparation.

Question 1

Is this a function of UCP? enforces the deployment of signed images to the cluster

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 2

A Kubernetes node is allocated a /26 CIDR block (64 unique IPs) for its address space. If every pod on this node has exactly two containers in it, how many pods can this address space support on this node?

  • A. 32
  • B. 32 in every Kubernetes namespace
  • C. 64 for every service routing to pods on this node
  • D. 64
Show Answer
Correct Answer:
D. 64
Question 3

You configure a local Docker engine to enforce content trust by setting the environment variable DOCKER_CONTENT_TRUST=1. If myorg/myimage:1.0 is unsigned, does Docker block this command? docker image inspect myorg/mayimage:1.0

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 4

Is this the purpose of Docker Content Trust? Enable mutual TLS between the Docker client and server.

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 5

Seven managers are in a swarm cluster. Is this how should they be distributed across three datacenters or availability zones? 5-1-1

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 6

Is this a function of UCP? image role-based access control

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 7

Seven managers are in a swarm cluster. Is this how should they be distributed across three datacenters or availability zones? 3-2-2

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 8

A company's security policy specifies that development and production containers must run on separate nodes in a given Swarm cluster. Can this be used to schedule containers to meet the security policy requirements? node affinities

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 9

Does this command display all the pods in the cluster that are labeled as ‘env: development’? ‘kubectl get pods --all-namespaces -l ‘env in (development)’ ’

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 10

Is this a supported user authentication method for Universal Control Plane? X.500

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 11

You add a new user to the engineering organization in DTR. Will this action grant them read/write access to the engineering/api repository? Add the user directly to the list of users with read/write access under the repository’s Permissions tab.

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 12

Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate? Pass the ‘--insecure registry’ flag to the daemon at run time.

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 13

Is this an advantage of multi-stage builds? better logical separation of Dockerfile instructions for increased readability

  • A. Yes
  • B. No
Show Answer
Correct Answer:
A. Yes
Question 14

Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate? Set and export the IGNORE_TLS environment variable on the command line.

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No
Question 15

Two development teams in your organization use Kubernetes and want to deploy their applications while ensuring that Kubernetes-specific resources, such as secrets, are grouped together for each application. Is this a way to accomplish this? Create one pod and add all the resources needed for each application.

  • A. Yes
  • B. No
Show Answer
Correct Answer:
B. No

Aced these? Get the Full Exam

Download the complete DCA study bundle with 58+ questions in a single printable PDF.

Purchase Full Exam PDF | $10