BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft Exam AZ-305 Topic 4 Question 67 Discussion

Actual exam question for Microsoft's AZ-305 exam
Question #: 67
Topic #: 4
[All AZ-305 Questions]

You have an Azure AD tenant.

You plan to deploy Azure Cosmos DB databases that will use the SQL API.

You need to recommend a solution to provide specific Azure AD user accounts with read access to the Cosmos DB databases.

What should you include in the recommendation?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Miesha at Sep 17, 2024, 08:46 AM

Limited Time Offer

25%

Off

Get Premium AZ-305 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Elliott
13 days ago
I heard Cosmos DB was built on a black hole, so good luck trying to control access to that thing.
upvoted 0 times
...
Sue
15 days ago
Hmm, maybe we should just give everyone admin access and call it a day. What could go wrong?
upvoted 0 times
...
Billy
16 days ago
I'd avoid C - master keys and Information Protection seem a bit overkill for a simple Cosmos DB read access scenario.
upvoted 0 times
Angella
3 days ago
D) shared access signatures (SAS) and Conditional Access policies
upvoted 0 times
...
Renato
4 days ago
B) certificates and Azure Key Vault
upvoted 0 times
...
Rozella
5 days ago
A) a resource token and an Access control (IAM) role assignment
upvoted 0 times
...
...
Mary
21 days ago
I'm gonna have to go with B on this one. Certificates and Key Vault are a bulletproof way to manage access.
upvoted 0 times
...
Kenda
1 months ago
Ooh, option D looks interesting. Shared access signatures and Conditional Access could add some nice security layers.
upvoted 0 times
Annalee
19 hours ago
User2: I agree, shared access signatures and Conditional Access can help control access effectively.
upvoted 0 times
...
Katheryn
26 days ago
Option D does sound like a good choice for security.
upvoted 0 times
...
...
Kirby
1 months ago
I'm not sure about shared access signatures (SAS), I think we should consider using a resource token and an Access control (IAM) role assignment instead.
upvoted 0 times
...
Jettie
2 months ago
I agree with Donte, shared access signatures (SAS) would be a good option for providing read access to the Cosmos DB databases.
upvoted 0 times
...
Chandra
2 months ago
Option A sounds like the way to go. Resource tokens and IAM role assignments are the standard for granting Azure AD users access to Cosmos DB.
upvoted 0 times
Hassie
13 days ago
Let's go with option A then, it's the recommended solution for this scenario.
upvoted 0 times
...
Mozell
15 days ago
I'm not familiar with resource tokens, but IAM role assignments make sense for access control.
upvoted 0 times
...
Garry
19 days ago
Agreed, that seems like the best way to provide specific Azure AD user accounts with read access to the Cosmos DB databases.
upvoted 0 times
...
Elvera
1 months ago
I think we should go with option A, resource token and IAM role assignment.
upvoted 0 times
...
...
Donte
2 months ago
I think we should include shared access signatures (SAS) in the recommendation.
upvoted 0 times
...

Save Cancel