Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-400 Exam - Topic 2 Question 83 Discussion

Actual exam question for Microsoft's AZ-400 exam
Question #: 83
Topic #: 2
[All AZ-400 Questions]

You have an Azure key vault named KV1 and three web servers.

You plan to deploy an app named App1 to the web server.

You need to ensure that App1 can retrieve a secret from KV1.

The solution must meet the following requirements:

* Minimize the number of permission grants required

* Follow the principle of least privilege.

What should you include in the solution?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Josephine at Sep 01, 2023, 07:00 AM

Limited Time Offer

25%

Off

Get Premium AZ-400 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Kathrine
4 months ago
Not sure if RBAQ is the best choice here.
upvoted 0 times
...
Viola
4 months ago
Surprised that people still consider service principals for this!
upvoted 0 times
...
Ettie
4 months ago
A user-assigned managed identity could work too, right?
upvoted 0 times
...
Leoma
4 months ago
Definitely agree, it minimizes permissions!
upvoted 0 times
...
Johnna
5 months ago
I think a system-assigned managed identity is the way to go.
upvoted 0 times
...
Cherry
5 months ago
I keep thinking about service principals, but I recall that they might not align with the least privilege principle as well as managed identities do.
upvoted 0 times
...
Gilma
5 months ago
This question seems similar to one we practiced where we had to minimize permissions. I think a user-assigned managed identity could work too, but I'm not confident.
upvoted 0 times
...
Benedict
5 months ago
I'm not entirely sure, but I feel like using role-based access control could complicate things with too many permissions.
upvoted 0 times
...
Elke
5 months ago
I remember we discussed managed identities in class, and I think a system-assigned managed identity might be the right choice here.
upvoted 0 times
...
Dottie
5 months ago
Based on the requirements, I'm leaning towards a system-assigned managed identity. That seems like the simplest solution that meets the criteria of minimizing permissions and following the principle of least privilege.
upvoted 0 times
...
Eliseo
5 months ago
I'm a bit confused on the difference between a user-assigned and system-assigned managed identity. I'll need to review those options more closely.
upvoted 0 times
...
Carmen
5 months ago
Okay, let's see. I think a system-assigned managed identity might be the way to go here. That would allow the app to access the key vault without needing to manage any additional credentials.
upvoted 0 times
...
Valentin
5 months ago
Hmm, this looks like a tricky one. I'll need to think carefully about the requirements to minimize permissions and follow the principle of least privilege.
upvoted 0 times
...
Zena
5 months ago
I'm pretty confident the answer is "Executive summary." That term is commonly used to refer to a high-level overview of a larger document or plan, which seems to fit the description in the question.
upvoted 0 times
...
Willard
5 months ago
I was leaning towards encouragement and support, but now I'm reconsidering. I think the safety aspect is probably the most critical responsibility here. Gotta make sure the client is protected.
upvoted 0 times
...
Ashley
6 months ago
I think this might be loyalty segmentation since they're rewarding frequent flyers.
upvoted 0 times
...
Aron
6 months ago
This seems straightforward to me. The key here is reducing the disk footprint, so thin-provisioning is definitely the way to go. It allows the VM to only allocate the storage it actually needs, rather than reserving a fixed amount of disk space.
upvoted 0 times
...

Save Cancel