Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Microsoft Exam AZ-204 Topic 4 Question 108 Discussion

Actual exam question for Microsoft's AZ-204 exam
Question #: 108
Topic #: 4
[All AZ-204 Questions]

You develop and deploy an Azure App Service web app named App1. You create a new Azure Key Vault named Vault 1. You import several API keys, passwords, certificates, and cryptographic keys into Vault1.

You need to grant App1 access to Vault1 and automatically rotate credentials Credentials must not be stored in code.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Rosina at Oct 24, 2024, 12:55 AM

Limited Time Offer

25%

Off

Get Premium AZ-204 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Valentine
11 days ago
Hold up, is this a trick question? Everyone knows the answer is C, right? Managed identities are the way to go these days. Who wants to mess with RBAC roles and SSL bindings when you can just let Azure handle it all?
upvoted 0 times
...
Glory
14 days ago
Hmm, I'm not sure about Option D. Uploading a self-signed certificate seems like it could be a bit of a hassle, and I'm not sure how well that would integrate with the rest of the app. I'd go with the managed identity approach.
upvoted 0 times
...
Francoise
16 days ago
Option C sounds like the way to go. Managed identities make it easy to secure access to resources without having to deal with credentials in the code. Rotating them automatically is a nice bonus too!
upvoted 0 times
...
Jesusita
20 days ago
I'm not sure about that. I think enabling App Service authentication for App1 and assigning a custom RBAC role to Vault1 could also be a valid option.
upvoted 0 times
...
Tiffiny
21 days ago
I agree with Irma. Assigning a managed identity to App1 would allow it to access Vault1 securely without storing credentials in code.
upvoted 0 times
...
Irma
23 days ago
I think the answer is C) Assign a managed identity to App1.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77