ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AI-102 All Questions

View all questions & answers for the AI-102 exam
Go to Exam

Exam AI-102 topic 4 question 10 discussion

Actual exam question from Microsoft's AI-102
Question #: 10
Topic #: 4
[All AI-102 Questions]

You are developing an application that will use Azure Cognitive Search for internal documents.
You need to implement document-level filtering for Azure Cognitive Search.
Which three actions should you include in the solution? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Send Azure AD access tokens with the search request.
  • B. Retrieve all the groups.
  • C. Retrieve the group memberships of the user.
  • D. Add allowed groups to each index entry.
  • E. Create one index per group.
  • F. Supply the groups as a filter for the search requests.
Show Suggested Answer Hide Answer
Suggested Answer: CDF 🗳️
by not_a_robot at Aug. 4, 2022, 9:52 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ninjia
Highly Voted 2 years, 10 months ago
Selected Answer: CDF
D: Add allowed groups to each index entry. Your documents must include a field specifying which groups have access. Reference: https://docs.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search#create-security-field C: You need to get the membership of the user F. Supply the groups as a filter for the search requests. "In order to trim documents based on group_ids access, you should issue a search query with a group_ids/any(g:search.in(g, 'group_id1, group_id2,...')) filter, where 'group_id1, group_id2,...' are the groups to which the search ##request issuer belongs##." Reference: https://docs.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search
upvoted 16 times
...
syupwsh
Most Recent 4 months, 2 weeks ago
Selected Answer: CDF
https://learn.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search As a workaround, you can create a filter that trims search results based on a string containing a group or user identity. --> This makes C and F as 2 of the correct answers In order to trim documents based on group_ids access, you should issue a search query with a group_ids/any(g:search.in(g, 'group_id1, group_id2,...')) filter, where 'group_id1, group_id2,...' are the groups to which the search request issuer belongs. --> This makes D as the other correct choice CDF
upvoted 1 times
...
krzkrzkra
11 months, 3 weeks ago
Selected Answer: CDF
Selected Answer: CDF
upvoted 1 times
...
reiwanotora
1 year ago
Selected Answer: CDF
group memberships Add allowed groups to each index entry. search requests
upvoted 1 times
...
HaraTadahisa
1 year ago
Selected Answer: CDF
I say this answer is C, D and F.
upvoted 1 times
...
reigenchimpo
1 year ago
Selected Answer: CDF
We need to implement document-level filtering now. So retrieve the group memberships, add allowed groups, supply the groups as a filter. CDF are correct answer.
upvoted 1 times
...
anto69
1 year, 2 months ago
The possible answers make no sense to me
upvoted 2 times
...
Murtuza
1 year, 3 months ago
Selected Answer: CDF
C, D and F are the correct answers
upvoted 3 times
...
evangelist
1 year, 5 months ago
The given answer CDF is CORRECT! C. Retrieve the group memberships of the user. To understand which documents the user is allowed to access. D. Add allowed groups to each index entry. To tag documents with the groups that can access them. F. Supply the groups as a filter for the search requests. To ensure that search results are filtered according to the user's group memberships.
upvoted 1 times
...
rdemontis
1 year, 8 months ago
Selected Answer: CDF
The answer is correct as well as the explanation/reference provided
upvoted 1 times
...
sl_mslconsulting
1 year, 8 months ago
A is wrong. Cognitive Search wouldn’t know how to handle the token handed to it. All you app does is to come up with the right filter and send it to the Cognitive Search service via a request. You also need to index the documents with the group info so later the Cognitive Service can do a proper filtering on them.
upvoted 1 times
sl_mslconsulting
1 year, 8 months ago
C D F are my choices
upvoted 1 times
...
...
zellck
2 years ago
Selected Answer: CDF
CDF is the answer. https://learn.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search Cognitive Search doesn't provide document-level permissions and can't vary search results from within the same index by user permissions. As a workaround, you can create a filter that trims search results based on a string containing a group or user identity. https://learn.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search#apply-the-security-filter-in-the-query In order to trim documents based on group_ids access, you should issue a search query with a group_ids/any(g:search.in(g, 'group_id1, group_id2,...')) filter, where 'group_id1, group_id2,...' are the groups to which the search request issuer belongs.
upvoted 2 times
M25
1 year, 10 months ago
Right at the bottom of the page: For an alternative pattern based on Azure Active Directory, or to revisit other security features, see the following links. • Security filters for trimming results using Active Directory identities • Security in Azure Cognitive Search
upvoted 1 times
...
...
marti_tremblay000
2 years, 3 months ago
Selected Answer: ACF
According to ChatGPT, the correct answers are ACF : To implement document-level filtering for Azure Cognitive Search, the following three actions should be included in the solution: A. Send Azure AD access tokens with the search request: This will allow Azure Cognitive Search to authenticate the user and retrieve their group memberships. C. Retrieve the group memberships of the user: This information is necessary to determine which documents the user is allowed to access. F. Supply the groups as a filter for the search requests: This will allow you to filter the search results based on the user's group memberships. Therefore, the correct answers are A, C, and F.
upvoted 3 times
M25
1 year, 10 months ago
A, C, F https://learn.microsoft.com/en-us/azure/search/search-howto-aad?tabs=config-svc-portal%2Caad-dotnet A key benefit of using Azure AD is that your credentials and API keys no longer need to be stored in your code. Azure AD authenticates the security principal (a user, group, or service) running the application. If authentication succeeds, Azure AD returns the access token to the application, and the application can then use the access token to authorize requests to Azure Cognitive Search. https://learn.microsoft.com/en-us/azure/search/search-security-trimming-for-azure-search-with-aad This article demonstrates how to use Azure Active Directory (AD) security identities together with filters in Azure Cognitive Search to trim search results based on user group membership.
upvoted 1 times
...
...
not_a_robot
2 years, 11 months ago
Selected Answer: BDF
Shouldn't the first step be getting all the groups? As when you create a security field, you'll need the the group ids. I'm not certain what the group membership of the user means.
upvoted 3 times
mk1967
2 years, 10 months ago
I guess this is the user using the aplication, therefore we must get groups to which he belongs.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel