ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 114 - AZ-204 discussion

Report
Export

You have an application that includes an Azure Web app and several Azure Function apps. Application secrets including connection strings and certificates are stored in Azure Key Vault.

Secrets must not be stored in the application or application runtime environment. Changes to Azure Active Directory (Azure AD) must be minimized.

You need to design the approach to loading application secrets.

What should you do?

A.
Create a single user-assigned Managed Identity with permission to access Key Vault and configure each App Service to use that Managed Identity.
Answers
A.
Create a single user-assigned Managed Identity with permission to access Key Vault and configure each App Service to use that Managed Identity.
B.
Create a single Azure AD Service Principal with permission to access Key Vault and use a client secret from within the App Services to access Key Vault.
Answers
B.
Create a single Azure AD Service Principal with permission to access Key Vault and use a client secret from within the App Services to access Key Vault.
C.
Create a system assigned Managed Identity in each App Service with permission to access Key Vault.
Answers
C.
Create a system assigned Managed Identity in each App Service with permission to access Key Vault.
D.
Create an Azure AD Service Principal with Permissions to access Key Vault for each App Service and use a certificate from within the App Services to access Key Vault.
Answers
D.
Create an Azure AD Service Principal with Permissions to access Key Vault for each App Service and use a certificate from within the App Services to access Key Vault.
Suggested answer: C
asked 02/10/2024
Joseph Bauer
39 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first