100+ Free JFrog Artifactory Certified DevOps Engineer Practice Questions

Pass your JFrog Artifactory Certified DevOps Engineer exam on the first try — instant access, no signup required.

✓ No registration✓ No credit card✓ No hidden fees✓ Start practicing immediately

100+ Questions

100% Free

1 / 100

Question 1

Score: 0/0

A developer reports that 'docker push' to Artifactory fails with an authentication error even though they can log in to the UI. What is the most likely first thing to verify?

That the developer has 'docker login' authenticated against the Docker repository using valid credentials or an access token and has deploy permission on it

That Xray indexing is disabled

That the repository layout is set to Maven

That the filestore is full

to track

Same family resources

Explore More DevOps & CI/CD Certifications

Continue into nearby exams from the same family. Each card keeps practice questions, study guides, flashcards, videos, and articles in one place.

Pipelines with Tekton (SC106)

Practice Questions100 questions

2026 Statistics

Key Facts: JFrog Artifactory Certified DevOps Engineer Exam

Number of Questions

JFrog (JFrog Academy)

90 min

Exam Duration

JFrog (JFrog Academy)

70%

Passing Score

JFrog (JFrog Academy)

2 years

Credential Validity

JFrog (JFrog Academy)

6+ months

Recommended Experience

JFrog certification study guide

Web-based proctored

Exam Delivery

JFrog (JFrog Academy)

The JFrog Artifactory Certified DevOps Engineer exam is a paid, web-based proctored test of 47 multiple-choice and multiple-answer questions in 90 minutes, with a 70% passing score and a two-year validity. JFrog (JFrog Academy) administers it and recommends six or more months of hands-on Artifactory experience. It covers repository types (local, remote, virtual), package management (Docker, Maven, npm, PyPI, Go, NuGet), permissions and access tokens, JFrog CLI build-info and promotion, replication and distribution, and JFrog Xray basics.

Sample JFrog Artifactory Certified DevOps Engineer Practice Questions

Try these sample questions to test your JFrog Artifactory Certified DevOps Engineer exam readiness. Each question includes a detailed explanation. Start the interactive quiz above for the full 100+ question experience with AI tutoring.

1In JFrog Artifactory, which repository type stores artifacts that are deployed directly by users or CI servers and physically reside on the Artifactory instance?

A.Remote repository

B.Local repository

C.Virtual repository

D.Federated repository

Explanation: Local repositories physically host artifacts that you deploy into Artifactory, such as your own internal builds. They are the only repository type to which artifacts are deployed directly and where the binaries actually reside on the instance.

2A remote repository in Artifactory primarily serves which purpose?

A.Replicating artifacts to a geographically distant Artifactory instance

B.Acting as a caching proxy for artifacts hosted on a remote external resource such as Maven Central or npmjs

C.Combining several local repositories into a single deployment endpoint

D.Storing internally produced release artifacts deployed by your build server

Explanation: A remote repository serves as a caching proxy for a repository managed at a remote URL (for example, Maven Central, npmjs, or PyPI). Artifacts downloaded through it are cached on demand so subsequent requests are served locally, reducing external bandwidth and improving build reliability.

3What is the defining characteristic of a virtual repository in Artifactory?

A.It automatically scans every artifact it serves with JFrog Xray

B.It can only aggregate remote repositories, not local ones

C.It stores artifacts on a separate high-availability filestore

D.It is a collection of local, remote, and other virtual repositories of the same package type accessed through a single URL

Explanation: A virtual repository aggregates local, remote, and other virtual repositories of the same package type behind one logical URL. This lets clients resolve and (optionally) deploy through a single endpoint without knowing the underlying repository layout.

4A team needs developers to resolve both internal libraries and proxied Maven Central dependencies through one URL, while deploying only to the internal repository. What is the recommended configuration?

A.Create a virtual repository aggregating the local and remote Maven repositories, and set the local repo as the default deployment repository

B.Point developers directly at the remote repository and deploy to it

C.Use a federated repository so deployments propagate automatically

D.Create two separate virtual repositories, one for resolve and one for deploy

Explanation: The best practice is a single virtual Maven repository that includes both the internal local repository and the remote (Maven Central) repository for resolution. Setting the local repository as the virtual repo's default deployment repository lets developers also deploy through the same URL while binaries land in the local repo.

5Artifactory is described as a 'universal' binary repository manager. What underlying storage technology enables it to natively support virtually any package format?

A.Block-level deduplication performed by the operating system

B.A package-specific plugin that rewrites artifacts into a common format

C.Checksum-based storage where binaries are stored once by their checksum and referenced by path

D.A relational database that stores each artifact as a BLOB

Explanation: Artifactory uses checksum-based storage: each binary is stored once in the filestore keyed by its checksum (SHA), while repository paths are metadata references to that binary. This checksum-based design supports any repository layout and gives native-level support to any packaging format, plus automatic deduplication.

6Which statement about repository naming conventions in Artifactory reflects a recommended best practice?

A.All repositories should share a single generic key

B.Repository keys must always begin with the word 'remote'

C.Repository keys should encode meaningful information such as team, technology (package type), and maturity (for example, libs-release-local)

D.Repository keys should be random to avoid collisions

Explanation: A recommended naming convention encodes useful context in the repository key, such as the team or project, the package type/technology, and the maturity level, for example libs-release-local or docker-dev-local. Consistent keys make permissions, resolution, and promotion workflows easier to manage.

7When a request is made to a virtual repository that aggregates several local and remote repositories, how does Artifactory resolve which artifact to return?

A.It searches the included repositories in their configured order and returns the first matching artifact, with local repositories typically searched before remote ones

B.It returns artifacts only from the first remote repository in the list

C.It merges all matching artifacts into a single combined file

D.It always returns the most recently deployed artifact regardless of repository order

Explanation: Artifactory resolves a virtual repository request by searching the included repositories according to their configured order and returns the first match. Local repositories are generally ordered before remote ones so internal artifacts take precedence over proxied external ones.

8What does a repository layout define in Artifactory?

A.The disk partition where the filestore is mounted

B.The order in which virtual repositories are searched

C.A pattern describing how artifact paths map to organization, module, and version tokens, used for features like snapshot handling and version resolution

D.The network ports used by the repository

Explanation: A repository layout is a configurable pattern (for example, the default Maven layout) that tells Artifactory how to parse artifact paths into tokens such as organization, module, baseRevision, and fileItegRevision. Layouts enable features like distinguishing snapshots from releases and resolving the latest version.

9Where are artifacts that have been downloaded through a remote repository physically held inside Artifactory?

A.In the remote repository's cache (often shown as repo-key-cache)

B.In the virtual repository that references the remote repository

C.They are never stored locally and are re-fetched on every request

D.In a dedicated trash-can repository

Explanation: When an artifact is requested through a remote repository, Artifactory downloads it from the external source and stores it in the remote repository's cache (commonly displayed as <repo-key>-cache). Subsequent requests are served from this cache until it expires or is cleaned.

10Which of the following accurately describes Artifactory's 'System of Record' model for binaries?

A.The CI server is the system of record and Artifactory is a temporary buffer

B.Source code is the system of record and Artifactory only mirrors it

C.Each developer workstation is its own system of record

D.Artifactory acts as the single authoritative source of truth for all binaries used in and produced by an organization

Explanation: In the System of Record model, Artifactory is the single authoritative, central source of truth for all binaries (dependencies and produced artifacts) across the software supply chain. This central hub provides traceability, governance, and reliable access to the exact binaries used in every build.

About the JFrog Artifactory Certified DevOps Engineer Exam

The JFrog Artifactory Certified DevOps Engineer exam validates that an engineer can operate JFrog Artifactory as a universal binary repository manager and System of Record. The blueprint covers Artifactory functionality and repository management (local, remote, and virtual repositories, layouts, and checksum-based storage), binary and package management across formats such as Docker, Maven, npm, PyPI, Go, and NuGet, and the security model including users, groups, permission targets, and access tokens. It also covers automation with the REST API and JFrog CLI, build-info collection and promotion-based development lifecycles, replication and distribution across sites, and JFrog Xray basics for scanning and policy enforcement. The web-based, proctored exam includes multiple-choice and multiple-answer questions and the credential is valid for two years.

Questions

47 scored questions

Time Limit

90 minutes

Passing Score

70%

Exam Fee

Paid (about 20% off when bundled with a JFrog Academy course) (JFrog (JFrog Academy))

JFrog Artifactory Certified DevOps Engineer Exam Content Outline

20%

Artifactory architecture and repository types

Artifactory as a universal binary repository manager and System of Record; creating and configuring local, remote, and virtual repositories; repository naming conventions, layouts, checksum-based storage, remote caching, federated repositories, and virtual resolution order.

20%

Binary and package management across package types

Hosting and proxying Docker, Maven, npm, PyPI, Go, and NuGet; configuring clients via Set Me Up (settings.xml, .npmrc, pip.conf, GOPROXY, NuGet.config); managing snapshots vs releases, properties, metadata, and AQL searches.

18%

Permissions, security, and access control

The JFrog Access security model: users, groups, and permission targets (read, deploy/cache, annotate, delete, manage); access tokens, scopes, and expiration; LDAP/SSO, anonymous access, the Access API, and cross-instance authentication.

18%

CI/CD pipeline integration with Artifactory

Integrating CI servers and developer tools; collecting and publishing build-info with the JFrog CLI using --build-name and --build-number, build-publish, build-promote, build-add-git, and build-collect-env; promotion-based development lifecycles and property-driven promotion.

14%

Replication and distribution

Push, pull, scheduled, and event-based replication; federated repositories and full-mesh topologies; master-slave best practices and replication-loop avoidance; distributing signed, immutable Release Bundles to edge nodes with JFrog Distribution.

10%

JFrog Xray basics and best practices

Indexing and scanning artifacts for vulnerabilities and license compliance; defining watches and security/license policies with actions such as block, fail build, or alert; impact analysis; and troubleshooting common errors using logs.

How to Pass the JFrog Artifactory Certified DevOps Engineer Exam

What You Need to Know

Passing score: 70%
Exam length: 47 questions
Time limit: 90 minutes
Exam fee: Paid (about 20% off when bundled with a JFrog Academy course)

Keys to Passing

Complete 500+ practice questions
Score 80%+ consistently before scheduling
Focus on highest-weighted sections
Use our AI tutor for tough concepts

JFrog Artifactory Certified DevOps Engineer Study Tips from Top Performers

1Memorize the three repository types: local repositories host your deployed artifacts, remote repositories cache proxied external content (in a repo-key-cache), and virtual repositories aggregate same-type repos behind one URL with a default deployment repository for pushing.

2Practice the JFrog CLI build-info flow: use --build-name and --build-number to collect, jf rt build-publish to publish, jf rt build-promote to promote, and enrich with build-add-git and build-collect-env.

3Know the access model cold: users belong to groups, permission targets bind users/groups to resources with read, deploy/cache, annotate, delete, and manage permissions, and access tokens (not deprecated API keys) authenticate CI jobs.

4Understand replication directions and scheduling: push vs pull, scheduled vs event-based, master-slave best practice, and why federated repositories provide bidirectional full-mesh mirroring while avoiding replication loops.

5Learn Xray fundamentals: artifacts must be indexed, watches define the monitored scope, policies hold rules (CVE severity, banned licenses) and actions (block, fail build, alert), and impact analysis traces a CVE across all affected builds.

6Get hands-on with Set Me Up to configure real clients (settings.xml, .npmrc, pip.conf, GOPROXY, NuGet.config) and practice promotion-based lifecycles using properties such as status=tested.

Frequently Asked Questions

What are the exam facts for the JFrog Artifactory Certified DevOps Engineer exam?

It is a web-based, proctored exam of 47 multiple-choice and multiple-answer questions to be answered in 90 minutes, with a 70% passing score. The credential is valid for two years and is administered by JFrog (JFrog Academy).

How much does the exam cost?

The exam fee is paid. JFrog typically offers a discount of about 20% when the exam is bundled with a JFrog Academy course. Confirm current pricing and bundle offers on the JFrog certification page.

What topics does the exam cover?

It covers Artifactory architecture and repository types (local, remote, virtual), package management across Docker, Maven, npm, PyPI, Go, and NuGet, permissions and access tokens, CI/CD integration with build-info and the JFrog CLI, replication and distribution, and JFrog Xray basics.

What experience does JFrog recommend before taking it?

JFrog recommends six or more months of hands-on experience as a JFrog Artifactory engineer, so you can perform tasks such as managing repositories, permissions, build integration, and promotion workflows. There are no formal prerequisites.

What is the difference between local, remote, and virtual repositories?

Local repositories physically host artifacts you deploy. Remote repositories cache artifacts proxied from an external source such as Maven Central. Virtual repositories aggregate local and remote repositories of the same package type behind one URL.

How long is the certification valid and how do I prepare?

The credential is valid for two years. Prepare with JFrog Academy learning paths and hands-on practice creating repositories, configuring permissions and access tokens, publishing build-info with the JFrog CLI, and setting up Xray watches and policies.