Question 1

[Understand Terraform Basics and CLI] If you update the version constraint in your Terraform configuration, Terraform will update your lock file the next time you run terraform Init.

Accepted Answer

TRUE

Explanation: The .terraform.lock.hcl file records the specific versions of providers that Terraform has selected to use for a configuration. The terraform init command is responsible for initializing a working directory, which includes downloading and installing the necessary providers based on the version constraints defined in the configuration files. When terraform init is executed, it compares the version constraints in the configuration with the versions recorded in the lock file. If the constraints have been updated in a way that the locked version no longer satisfies them, Terraform will find the newest available provider version that meets the new constraint, download it, and update the .terraform.lock.hcl file to record the newly selected version and its checksum.

Question 2

[Navigate Terraform State and Backends] Terraform variable names are saved in the state file.

Accepted Answer

FALSE

Explanation: The Terraform state file does not store the names of the input variables defined in your configuration (.tf files). Instead, it stores the values that are assigned to resource attributes, which may have originated from variables. The state file's primary purpose is to map the configured resources to real-world objects and to cache the attribute values of those resources. The configuration logic, including variable names, resides solely in the .tf configuration files.

Question 3

[Understand Terraform Basics and CLI]
You have a list of numbers that represents the number of free CPU cores on each virtual cluster:
numcpus =
[ 18, 3, 7, 11, 2 ]
What Terraform function could you use to select the largest number from the list?
[numcpus]

Accepted Answer

[FALSE]

Explanation: The statement is false. By default, when you run terraform apply without a pre-saved plan file, it first runs its own planning phase. This phase includes a "refresh" step where Terraform queries the cloud provider APIs to get the current, real-world state of the infrastructure. In this scenario, the refresh step will detect the manual changes made by the teammate. Consequently, the execution plan generated by terraform apply will be different from the one generated by the earlier terraform plan command, as it will account for this newly discovered "drift" between the state file and the actual infrastructure.

Question 4

[Understand Terraform Basics and CLI] You must use different Terraform commands depending on the cloud provider you use.

Accepted Answer

FALSE

Explanation: The core Terraform Command Line Interface (CLI) commands and workflow are designed to be provider-agnostic. The standard commands—terraform init, terraform plan, terraform apply, and terraform destroy—remain the same regardless of which cloud provider (e.g., AWS, Azure, Google Cloud) you are targeting. The differentiation between providers is handled within the Terraform configuration files (.tf) through the declaration of a specific provider block and the use of provider-specific resource types (e.g., awsinstance vs. azurermvirtualmachine).

Question 5

[Manage Terraform Resources and Providers]
You ate creating a Terraform configuration which needs to make use of multiple providers, one for
AWS and one for Datadog. Which of the following provider blocks would allow you to do this?
A)
Terraform-Associate-003 practice exam questions

Terraform-Associate-003 practice exam questions

B)

Terraform-Associate-003 real exam questions

C)

Terraform-Associate-003 actual exam questions

D)

Accepted Answer

[FALSE]

Explanation: A provider configuration block is only required if the Terraform configuration declares resources or data sources that rely on that specific provider. A Terraform configuration can be syntactically valid and functional without any provider blocks if it does not manage any external resources. For example, a configuration that only uses output blocks to display static values or locals to perform transformations does not require a provider block to initialize or apply.

Question 6

[Understand Terraform Basics and CLI] terraform init creates an example main.tf file in the current directory.

Accepted Answer

[FALSE]

Explanation: The terraform init command is used to initialize a working directory that already contains Terraform configuration files (such as main.tf). Its primary purpose is to prepare the directory for other commands by performing three main actions: initializing the backend, downloading required provider plugins, and installing any referenced modules. The command reads existing configuration files to determine which providers and modules are needed; it does not create any example or boilerplate configuration files itself.

Question 7

[Understand Terraform Basics and CLI] terraform validate confirms that your infrastructure matches the Terraform state file.

Accepted Answer

FALSE

Explanation: The terraform validate command is used to check whether a set of configuration files are syntactically valid and internally consistent. It performs a static analysis of the .tf files in the current directory to catch syntax errors, incorrect argument types, and other code-level issues. It does not access any remote services, provider APIs, or the Terraform state file, and therefore cannot confirm if the deployed infrastructure matches the state.

Question 8

[Interact with Terraform Modules] All modules published on the official Terraform Module Registry have been verified by HasihCorp.

Accepted Answer

[FALSE]

Explanation: The official Terraform Module Registry hosts modules from three distinct tiers: Community, Partner, and Verified. The "Community" tier consists of modules published by any member of the Terraform community, and these modules do not undergo a formal verification process by HashiCorp. The "Verified" status is a specific badge awarded to a subset of modules, primarily from official HashiCorp partners, that meet a higher standard of quality, maintenance, and testing. Therefore, the statement that all modules are verified is incorrect.

Question 9

[Interact with Terraform Modules] Terraform can only manage resource dependencies if you set them explicitly with the depends_on argument.

Accepted Answer

[FALSE]

Explanation: The statement is false because Terraform's primary mechanism for managing dependencies is implicit. Terraform automatically builds a dependency graph by parsing the configuration and analyzing the references between resources. For example, if a virtual machine resource configuration references the ID of a virtual network, Terraform understands that the virtual machine depends on the virtual network and will create the network first. The dependson meta-argument is an override mechanism used only to create explicit dependencies for cases where a dependency is not visible to Terraform through direct resource references.

Question 10

[Read, Generate, and Modify Configurations] Setting the TF_LOG environment variable to DEBUG causes debug messages to be logged into stdout.

Accepted Answer

FALSE

Explanation: Setting the TFLOG environment variable to DEBUG does enable detailed logging for Terraform's core and providers. However, by default, this log output is sent to the stderr (standard error) stream, not the stdout (standard output) stream. This separation ensures that diagnostic and debug information does not interfere with the primary, often machine-readable, output of commands like terraform plan or terraform show, which are directed to stdout.

Question 11

[Understand Terraform Basics and CLI]
You have a list of numbers that represents the number of free CPU cores on each virtual cluster:
numcpus =
[ 18, 3, 7, 11, 2 ]
What Terraform function could you use to select the largest number from the list?
[numcpus]

Accepted Answer

B

Explanation: The max function is a built-in Terraform numeric function that takes one or more numbers as arguments and returns the greatest number from the set. To use it with a list of numbers, such as the numcpus variable, you would use the expand (...) symbol to pass the list elements as individual arguments to the function (e.g., max(var.numcpus...)). This will correctly identify and return the largest value from the list, which is 18 in this case.

Question 12

[Manage Terraform Resources and Providers] You ate creating a Terraform configuration which needs to make use of multiple providers, one for AWS and one for Datadog. Which of the following provider blocks would allow you to do this? A) https://kxbjsyuhceggsyvxdkof.supabase.co/storage/v1/object/public/file-images/TERRAFORM-ASSOCIATE-003_(1)/page_2_img_1.jpg B) https://kxbjsyuhceggsyvxdkof.supabase.co/storage/v1/object/public/file-images/TERRAFORM-ASSOCIATE-003_(1)/page_3_img_1.jpg C) https://kxbjsyuhceggsyvxdkof.supabase.co/storage/v1/object/public/file-images/TERRAFORM-ASSOCIATE-003_(1)/page_3_img_2.jpg D) https://kxbjsyuhceggsyvxdkof.supabase.co/storage/v1/object/public/file-images/TERRAFORM-ASSOCIATE-003_(1)/page_4_img_1.jpg

Accepted Answer

C

Explanation: The terraform { requiredproviders { ... } } block is the standard syntax in modern Terraform (0.13+) for declaring dependencies on specific providers. This block instructs Terraform on which providers are needed, where to source them from (e.g., hashicorp/aws, DataDog/datadog), and which versions are compatible. This declaration is a prerequisite for terraform init to download the correct provider plugins from the Terraform Registry. It is the fundamental step that enables the use of multiple, specific providers within a configuration before they can be configured with their respective provider blocks.

Question 13

[Understand Terraform Basics and CLI] What is one disadvantage of using dynamic blocks in Terraform?

Accepted Answer

D

Explanation: While dynamic blocks are a powerful feature for creating multiple nested configuration blocks from a collection, their primary disadvantage is the potential to reduce the readability and maintainability of the code. They introduce a layer of abstraction; instead of seeing the configuration declared explicitly, a user must interpret the foreach loop and the content block to understand the final resulting infrastructure. The official Terraform documentation explicitly warns that overusing dynamic blocks can make configuration harder to read and maintain.

Question 14

[Navigate Terraform State and Backends] What Terraform command always causes a state file to be updated with changes that might have been made outside of Terraform?

Accepted Answer

A

Explanation: terraform plan -refresh-only reads the current real-world infrastructure, compares it to the objects recorded in the state, and then rewrites the local/remote state file with any detected drift, even if the configuration itself proposes no changes. Because the sole purpose of –refresh-only is to synchronize state with out-of-band modifications, invoking the flag always updates the state file. No other listed command guarantees that a write to state will occur purely to record external changes.

Question 15

[Understand Terraform Basics and CLI] Which of these commands makes your code more human readable?

Accepted Answer

D (ASSUMING 'TERRAFORM FILE' IS A TYPO FOR 'TERRAFORM FMT')

Explanation: The question contains a likely typo in option D; the correct command is terraform fmt. The terraform fmt command is the standard tool used to rewrite Terraform configuration files to a canonical format and style. It recursively processes files in the current directory to ensure consistent indentation, spacing, and alignment. This makes the HCL code more human-readable and maintainable for developers working on the project, without changing the behavior of the configuration.

Free Terraform-Associate-003 Actual Exam Questions