ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-400 All Questions

View all questions & answers for the AZ-400 exam
Go to Exam

Exam AZ-400 topic 4 question 65 discussion

Actual exam question from Microsoft's AZ-400
Question #: 65
Topic #: 4
[All AZ-400 Questions]

HOTSPOT
-

You have an Azure subscription that contains an Azure key vault named Vault1, an Azure pipeline named Pipeline1, and an Azure SQL database named DB1.

Pipeline1 is used to deploy an app that will authenticate to DB1 by using a password.

You need to store the password in Vault1. The solution must ensure that the password can be accessed by Pipeline1.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by kay000001 at June 7, 2023, 11:59 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zellck
Highly Voted 1 year, 4 months ago
1. Secret 2. Access policy https://learn.microsoft.com/en-us/azure/key-vault/general/assign-access-policy?tabs=azure-portal A Key Vault access policy determines whether a given security principal, namely a user, application or user group, can perform different operations on Key Vault secrets, keys, and certificates. You can assign access policies using the Azure portal, the Azure CLI, or Azure PowerShell.
upvoted 8 times
nakedsun
1 year, 3 months ago
Azure RBAC is the recommended authorization system for the Azure Key Vault data plane. https://learn.microsoft.com/en-us/azure/key-vault/general/rbac-access-policy 1. Secret 2. Access Control (IAM)
upvoted 8 times
Tyler2023
1 year, 1 month ago
Then the question should change the Access Control (IAM) settings to Access Control (IAM) role assignment
upvoted 5 times
...
arr73
5 months, 3 weeks ago
Slot2 is "Access policy", because in the context of azure pipelines "Key Vaults using Azure role-based access control (Azure RBAC) are not supported" as said in the link bellow: Reference: https://learn.microsoft.com/en-us/azure/devops/pipelines/library/variable-groups?view=azure-devops&tabs=yaml#link-secrets-from-an-azure-key-vault It's a little confusing, because as you say, in general RBAC is recommended over policies (legacy), but not from Azure Pipelines because it's not supported.
upvoted 4 times
...
...
...
UrbanRellik
Most Recent 5 months, 1 week ago
RBAC is the recommended permission model in Key Vault (2024). Access policies are not allowed in the RBAC model. Secret. Access control (IAM).
upvoted 3 times
...
ozbonny
8 months, 1 week ago
1. Secret 2. Access policy According with this policy https://microsoftlearning.github.io/AZ400-DesigningandImplementingMicrosoftDevOpsSolutions/Instructions/Labs/AZ400_M05_L10_Integrating_Azure_Key_Vault_with_Azure_DevOps.html
upvoted 1 times
...
vsvaid
10 months, 2 weeks ago
Agree with the answer. Secret and Access policy. But Access Control (IAM) is also right. I wonder if both answers can be right
upvoted 2 times
...
zellck
1 year, 4 months ago
Same as Question 1. https://www.examtopics.com/discussions/microsoft/view/74304-exam-az-400-topic-4-question-1-discussion
upvoted 2 times
...
kay000001
1 year, 4 months ago
Correct.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago