CrowdStrike
CCCS-203B · Question #248
CCCS-203B Question #248: Real Exam Question with Answer & Explanation
Sign in or unlock CCCS-203B to reveal the answer and full explanation for question #248. The question stem and answer options stay visible for context.
Question
An enterprise using Kubernetes wants to enforce a security policy that ensures all deployed containers originate only from their private container registry (registry.example.com). What is the best way to achieve this using an admission controller?
Options
- AUse a Kubernetes NetworkPolicy to restrict egress traffic to public container registries
- BUse a PodSecurityPolicy (PSP) to define allowed image sources
- CUse RBAC to restrict users from pulling images from unauthorized registries
- DUse a ValidatingWebhookConfiguration to reject pods that use images from untrusted registries
Unlock CCCS-203B to see the answer
You've previewed enough free CCCS-203B questions. Unlock CCCS-203B for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.