Click to upload or drag and drop
PDF, DOCX, PPTX, TXT, JPG, JPEG, PNG, HEIC, ODP, ODT, BMP, or TIFF
up to 20MB
Uploading...
The HashiCorp Vault Associate exam moved from version 002 to 003, exam code HCVA0-003, and 002 is retired, so study 003. The objective list went from ten sections to nine: the standalone command line, UI, and API objectives were folded into the topics that use them, and two new areas were added, deployment architecture and access management. The exam now tracks Vault product version 1.16.
If you started preparing a while ago or bought a course that has not been refreshed, this matters. The change is a genuine reorganization, not a renumbering, and it moved the exam toward how Vault is run in production. Here is what actually changed.
Version 002 listed ten objective areas, including separate objectives for using the Vault command line, the UI, and being aware of the API. Version 003 removed those as standalone topics. Instead, you are now expected to use the API, CLI, and UI while you authenticate, write policies, and enable secrets engines. In other words, tool usage is no longer a subject you study on its own; it is woven into the tasks it belongs to. That is closer to how you actually work with Vault, and it means practice questions should test the CLI and API in context rather than as trivia.
Two new objective areas appear in 003 that 002 did not test, and both are about running Vault rather than just using it:
The addition of HashiCorp-managed clusters on HCP and the Vault Secrets Operator is the clearest signal of where HashiCorp is pointing the credential: managed Vault and Kubernetes-native secrets delivery. If your prep never mentions either, it predates 003.
| # | Objective area |
|---|---|
| 1 | Authentication methods |
| 2 | Vault policies |
| 3 | Vault tokens |
| 4 | Vault leases |
| 5 | Secrets engines |
| 6 | Encryption as a Service |
| 7 | Vault architecture fundamentals |
| 8 | Vault deployment architecture (new in 003) |
| 9 | Access management architecture (new in 003) |
HashiCorp does not publish percentage weights for any of these, so treat all nine as fair game and cover them evenly.
The logistics are the same as before. The exam is still one hour, still multiple choice, still online proctored with no lab, and still US$70.50 plus tax. There is still no published passing score and no official question count, and the credential is still valid for two years. So the version bump does not change how you register or what the day looks like; it changes what you need to know.
| Fact | Value (003) |
|---|---|
| Exam code | HCVA0-003 |
| Vault version tracked | 1.16 |
| Time | 1 hour |
| Cost | US$70.50 plus tax |
| Validity | 2 years |
| Passing score | Not published |
Two quick searches settle it. Search your material for "Vault Secrets Operator" and for "HCP-managed". If both are missing, the course was built for 002 and skips the two newest objective areas entirely. Also check whether it teaches the CLI, UI, and API as their own module; if it does, it is following the old 002 structure rather than the integrated 003 approach. Keep a good 002 course for the fundamentals that did not change, such as tokens, policies, and secrets engines, but fill the gaps from the current objectives.
The new deployment and access management content also leans into security and audit concerns, so if part of your role is mapping controls to an audit, the replication and Secrets Operator material will feel familiar and worth extra attention.
Read the official 003 objectives first so you are anchored to the current version, then spend hands-on time in a dev-mode Vault server, and drill questions across all nine areas with extra weight on the two new ones. Turn the objectives and your own notes into question sets with the HashiCorp Vault Associate practice exam generator, making a separate set for deployment architecture and access management so the new material gets the repetition it needs. If you are building out a wider platform path, the Terraform Associate practice exam is the companion credential in HashiCorp's infrastructure track.
Study 003, not 002. The fundamentals carry over, but the exam now expects you to understand how Vault is deployed and how secrets reach applications and Kubernetes, and it stopped treating the CLI, UI, and API as separate topics. Prepare on the current objectives and you will not be surprised by the two new sections that trip up anyone still studying the retired version.
From the same family of tools