ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-300 All Questions

View all questions & answers for the SC-300 exam
Go to Exam

Exam SC-300 topic 3 question 47 discussion

Actual exam question from Microsoft's SC-300
Question #: 47
Topic #: 3
[All SC-300 Questions]

HOTSPOT
-

You have an Azure subscription named Sub1 that contains a storage account named storage1.

You need to deploy two apps named App1 and App2 that will have the following configurations:

• App1 will be deployed as a registered app in Sub1.
• App1 will access storage1 by using Microsoft Entra authentication.
• App2 will access storage1 by using a single Microsoft Entra identity.
• App2 be hosted on two new virtual machines named VM1 and VM2.

The solution must minimize administrative effort.

Which type of identity will each app use to access storage1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by dzdz at March 29, 2024, 1:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dzdz
Highly Voted 11 months, 3 weeks ago
App1 : System-assigned managed identity. App2 : User-assigned managed identity.
upvoted 9 times
59e8fdb
5 days, 14 hours ago
Not correct
upvoted 1 times
...
Nail
4 months, 2 weeks ago
how is this helpful without any sort of explanation?
upvoted 6 times
...
...
jim85
Highly Voted 9 months ago
Answers are correct. App1 - Service principal (Enterprise app) https://learn.microsoft.com/en-us/entra/identity-platform/app-objects-and-service-principals?tabs=browser App2 - UAMI https://learn.microsoft.com/en-us/entra/identity/managed-identities-azure-resources/managed-identity-best-practice-recommendations
upvoted 7 times
...
Fijii
Most Recent 2 weeks, 1 day ago
This is the correct anwsers
upvoted 1 times
Fijii
2 weeks, 1 day ago
Had a hard time understanding this, hopefully ChatGPT is right, it seems to be the correct anwser : App1 needs a service principal, a managed identity is not available for a registered app (only azure resources) and Entra Account would not minimize admin effort : App2 is hosted on VM1 and VM2. VM are azure resources, so service principal is not applicable here and Entra account would again not minimize admin effort. The solution is a managed identity. However a system-assigned identity is only tied to ONE resource, the identity must be shared, so User-Assigned it is.
upvoted 2 times
...
...
calom52
4 months, 2 weeks ago
The service principal object defines what the app can actually do in the specific tenant, who can access the app, and what resources the app can access.
upvoted 1 times
...
Panama469
8 months, 2 weeks ago
Answers correct, agree with JIM85.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago