New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-305 Exam - Topic 3 Question 56 Discussion

Actual exam question for Microsoft's AZ-305 exam
Question #: 56
Topic #: 3
[All AZ-305 Questions]

You have an Azure AD tenant.

You plan to deploy Azure Cosmos DB databases that will use the SQL API.

You need to recommend a solution to provide specific Azure AD user accounts with read access to the Cosmos DB databases.

What should you include in the recommendation?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Dierdre at May 07, 2024, 08:10 PM

Limited Time Offer

25%

Off

Get Premium AZ-305 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kerry
3 months ago
I’m leaning towards shared access signatures for flexibility!
upvoted 0 times
...
Aimee
3 months ago
I think certificates and Key Vault are overkill for just read access.
upvoted 0 times
...
Elina
4 months ago
Wait, can you really use IAM roles with Cosmos DB?
upvoted 0 times
...
Irene
4 months ago
Totally agree, that’s the best way to manage access.
upvoted 0 times
...
Bulah
4 months ago
A resource token and an IAM role assignment sounds right!
upvoted 0 times
...
Filiberto
4 months ago
Shared access signatures seem like a possibility, but I’m not clear on how they integrate with Azure AD for user access.
upvoted 0 times
...
Mitzie
4 months ago
Certificates and Azure Key Vault sound familiar, but I don't recall them being used specifically for Cosmos DB access.
upvoted 0 times
...
Theron
5 months ago
I remember a practice question about role assignments, and I think they might be relevant here for granting access.
upvoted 0 times
...
Alise
5 months ago
I think we discussed resource tokens in class, but I'm not entirely sure how they work with Azure AD.
upvoted 0 times
...
Ashton
5 months ago
I'm leaning towards option A. Providing a resource token and assigning an IAM role to the Azure AD users seems like the most direct way to grant them read access to the Cosmos DB databases.
upvoted 0 times
...
Izetta
5 months ago
Hmm, I'm a bit unsure about this one. I know Cosmos DB has different authentication options, but I'm not sure which one is best for providing read access to specific Azure AD users.
upvoted 0 times
...
Blair
5 months ago
This looks like a straightforward question about securing access to Cosmos DB databases. I think the key is to focus on Azure AD integration and access control.
upvoted 0 times
...
Ricarda
5 months ago
Okay, let's think this through step-by-step. We need to provide read access to Azure AD users, so I'm guessing we'll need to use an IAM role assignment. The resource token and Access control (IAM) option sounds like the right approach.
upvoted 0 times
...
Dierdre
5 months ago
Okay, I think I've got a good handle on this. I'll create the necessary groups, then loop through the user list and conditionally apply the appropriate password and group membership based on the job description. As long as I use the vault password file, I should be good to go.
upvoted 0 times
...
Elenor
5 months ago
Ah, I remember learning about this in my networking class. The default port for SSH is TCP port 22, so I'll confidently select option B.
upvoted 0 times
...
Jospeh
5 months ago
I practiced a similar question, and I'm pretty sure we learned that you shouldn't put anything in their mouth. So maybe D is even worse?
upvoted 0 times
...
Junita
5 months ago
Okay, I've got a strategy for this. I'll focus on the key details - that a service area is being added, and a registration sc must be specified. Then I'll evaluate whether that means the statement is true or false.
upvoted 0 times
...
Cammy
2 years ago
A makes sense to me too. IAM roles are a common way to manage access in Azure.
upvoted 0 times
...
Shad
2 years ago
I considered B, but it seems more related to securing keys than access control.
upvoted 0 times
...
Terrilyn
2 years ago
Because it specifically mentions read access for Azure AD user accounts.
upvoted 0 times
...
Lanie
2 years ago
Why do you think that, Bob?
upvoted 0 times
...
Terrilyn
2 years ago
I think the right choice might be A. A resource token and an IAM role assignment.
upvoted 0 times
...
Jamal
2 years ago
This exam question seems tricky, anyone know the answer?
upvoted 0 times
...

Save Cancel