Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AI-102 All Questions

View all questions & answers for the AI-102 exam
Go to Exam

Exam AI-102 topic 4 question 9 discussion

Actual exam question from Microsoft's AI-102
Question #: 9
Topic #: 4
[All AI-102 Questions]

DRAG DROP -
You have a web app that uses Azure Cognitive Search.
When reviewing billing for the app, you discover much higher than expected charges. You suspect that the query key is compromised.
You need to prevent unauthorized access to the search endpoint and ensure that users only have read only access to the documents collection. The solution must minimize app downtime.
Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Reference:
https://docs.microsoft.com/en-us/azure/search/search-security-api-keys
by guruaws2021 at Aug. 27, 2021, 10:16 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
guruaws2021
Highly Voted 3 years, 3 months ago
The answer is wrong regenerated secondary key update the app to use the secondary key regenarated the primary key
upvoted 41 times
ziggy1117
1 year, 5 months ago
the app only uses a query key not secondary or primary keys. The answer is CORRECT
upvoted 21 times
...
satishk4u
2 years, 6 months ago
No, it is about query key not admin key.
upvoted 13 times
...
czmiel24
3 years, 2 months ago
Nope, the answer is correct. It's all about query keys which can be up to 50.
upvoted 50 times
...
AnonymousJhb
1 year ago
The answer is correct. By default, only 1 query key is created, but as per the answer, a new query key (up to 50) can be generated. More can be created on demand by a search service administrator. Query keys are not admin keys! Dont get caught! https://learn.microsoft.com/en-us/azure/search/search-security-api-keys?tabs=portal-use%2Cportal-find%2Cportal-query
upvoted 8 times
rdemontis
1 year ago
exactly, we don't have to confuse Admin Keys with Query keys. They are different things and with a different management
upvoted 5 times
...
...
...
Adedoyin_Simeon
Highly Voted 3 years, 1 month ago
The answer is correct. The question specifically mentioned a read-only access to the documents which is achieved only through query keys. And it is a query key that was compromised. Any of the admin keys (primary and secondary) allows read-write operations. Hence, solution is to create a new query key, switch to the new query key and delete the compromised query key.
upvoted 27 times
...
19d92c7
Most Recent 4 days, 13 hours ago
how can exam topics can be so wrong??
upvoted 1 times
...
3fbc31b
1 week, 1 day ago
Given that the scenario specifically mentions QUERY key, the answer is correct.
upvoted 1 times
...
jolimon
2 weeks, 3 days ago
i chose: regenerated secondary key update the app to use the secondary key regenarated the primary key
upvoted 1 times
...
anto69
3 months, 1 week ago
Since access is stated as read-only the answer is correct
upvoted 1 times
...
anto69
3 months, 2 weeks ago
regenerated secondary key update the app to use the secondary key regenarated the primary key
upvoted 1 times
...
PeteColag
5 months ago
The stated answer is correct. - Query keys do not have the concept of primary and secondary key. - The concept of primary key and secondary key applies only to admin keys. - You get one key by default, and then you can create additional keys (up to 50).
upvoted 1 times
...
laitoanthang
5 months ago
It's a little bit confused when I met similar question in the topic 4 question 2. 2 questions have almost similar contents but different answer. Can you guys check it out
upvoted 1 times
...
reiwanotora
5 months, 2 weeks ago
1. Add a new query key. 2. Change the app to use the new key. 3. Delete the compromised key.
upvoted 5 times
...
sl_mslconsulting
1 year, 1 month ago
Suspecting unauthorized access doesn’t give you a reason to interrupt legit users. Also by looking the read only access requirement to the document collections already tells you this is about query keys.
upvoted 1 times
sl_mslconsulting
1 year ago
Two key requirements are read-only access to the document collection and minimum app downtime. Answers are obvious.
upvoted 1 times
...
...
zellck
1 year, 4 months ago
1. Add new query key 2. Change app to use new key 3. Delete compromised key https://learn.microsoft.com/en-us/azure/search/search-security-api-keys?tabs=portal-use%2Cportal-find%2Cportal-query#create-query-keys
upvoted 8 times
...
Pixelmate
1 year, 5 months ago
ChatGPT answer : The answer is correct but in a different order. 1. Revoke the compromised query key immediately to prevent further unauthorized access. 2. Create a new query key for the application to use for authorized access. 3. Update the search endpoint and application to use the new query key and ensure that it is properly secured.
upvoted 2 times
M25
1 year, 2 months ago
F (Delete compromised), A (Add new / “recreate”), D (Change / update app to use new) https://learn.microsoft.com/en-us/rest/api/searchmanagement/2021-04-01-preview/query-keys Delete Deletes the specified query key. Unlike admin keys, query keys are not regenerated. The process for regenerating a query key is to delete and then recreate it.
upvoted 1 times
...
...
aiml
1 year, 6 months ago
The answer is correct. As its about query key and not for admin key.
upvoted 4 times
...
Eltooth
2 years, 4 months ago
Answer is correct. Add a new query key Change the app to use the new key Delete the compromised key
upvoted 4 times
...
mohamedba
2 years, 4 months ago
1. Regenerate 2nd key 2. Change the app to use the regenerated 2nd key 3. Regenerate the 1st key
upvoted 2 times
Eltooth
2 years, 4 months ago
Wrong. There is no mention of primary or secondary key in this question. The provided answer is correct: Add a new query key Change the app to use the new key Delete the compromised key
upvoted 1 times
...
...
reachmymind
2 years, 9 months ago
Given Answer is Correct: Add a new query key Change the app to use the new key Delete the compromised key The key here is to not confuse "query Keys" with "admin keys" https://docs.microsoft.com/en-us/azure/search/search-security-api-keys
upvoted 5 times
...
Load full discussion...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel