Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-204 All Questions

View all questions & answers for the AZ-204 exam
Go to Exam

Exam AZ-204 topic 10 question 1 discussion

Actual exam question from Microsoft's AZ-204
Question #: 1
Topic #: 10
[All AZ-204 Questions]

HOTSPOT -
You need to implement the Azure Function for delivery driver profile information.
Which configurations should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Azure Identity library -
Store delivery driver profile information in Azure Active Directory (Azure AD) by using an Azure Function called from the corporate website.
We recommend that you use a managed identity for applications deployed to Azure.
The preceding authentication scenarios are supported by the Azure Identity client library and integrated with Key Vault SDKs.
Note: What is Managed Service Identity?
Azure Key Vault avoids the need to store keys and secrets in application code or source control. However, in order to retrieve keys and secrets from Azure Key
Vault, you need to authorize a user or application with Azure Key Vault, which in its turn needs another credential. Managed Service Identity avoids the need of storing credentials for Azure Key Vault in application or environment settings by creating a Service Principal for each application or cloud service on which
Managed Service Identity is enabled. This Service Principal enables you to call a local MSI endpoint to get an access token from Azure AD using the credentials of the Service Principal. This token is then used to authenticate to an Azure Service, for example Azure Key Vault.

Box 2: Azure Key Vault -
Azure Key Vault allows you to securely access sensitive information from within your applications:
* Keys, secrets, and certificates are protected without your having to write the code yourself, and you can easily use them from your applications.
Use Azure Key Vault to store only secrets for your application. Examples of secrets that should be stored in Key Vault include:

Client application secrets -

Connection strings -

Passwords -

Shared access keys -

SSH keys -
Reference:
https://docs.microsoft.com/en-us/azure/key-vault/general/developers-guide https://integration.team/blog/retrieve-azure-key-vault-secrets-using-azure-functions-and-managed-service-identity
by willchenxa at Sept. 2, 2022, 5:52 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
willchenxa
Highly Voted 2 years, 2 months ago
Store delivery driver profile information in Azure Active Directory (Azure AD), I would use: Code Library: MSAL API: Microsoft Graph https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-overview
upvoted 76 times
Dani_ac7
2 years, 2 months ago
i think your answer is correct
upvoted 3 times
...
davidkerr7
1 year, 5 months ago
correct, profile is stored in AD not keyvault "Store delivery driver profile information in Azure Active Directory (Azure AD) by using an Azure Function called from the corporate website."
upvoted 1 times
...
...
coffecold
Highly Voted 2 years ago
To prevent reading the cases multiple times: Please see the spots below where you can find the questions (page/topic/question/subject) VanArsdel, Ltd. 47 10 1 delivery profile information in code 48 10 2 grant access SAS or AD? 48 10 3 JWT +claims 48 10 4 place to store the RSA-HSM key 51 15 1 reduce read latency Cosmos DB 51 15 2 audit transactions in blob 54 21 1 systems for source-receiver-handler 57 29 1 funcion configuration : binding , trigger, direction 57 29 2 tier of SPA web app 57 30 1 Azure Blob features for point-in-time restore and accidental deletion of data
upvoted 21 times
OPT_001122
1 year, 11 months ago
great help!
upvoted 2 times
...
dancing__donkey
1 year, 9 months ago
Where are these pages? link pls
upvoted 4 times
...
...
raymond_abcd
Most Recent 9 months, 3 weeks ago
The three-year deprecation period for Azure AD Graph ended on June 30, 2023. Microsoft Graph is the recommended replacement for Azure AD Graph.
upvoted 3 times
...
dddddd111
1 year ago
I got this question and chose provided answers. Score 644/1000 - failed. T_T
upvoted 5 times
overhill
4 days, 10 hours ago
It was close
upvoted 1 times
...
...
jaf19f
1 year, 3 months ago
I got this question (12-Aug-2023) and I chose highly voted answer - 932 passed
upvoted 6 times
...
juanckar
1 year, 4 months ago
This was on the exam (July 2023). Went with highly voted. Scored 917
upvoted 6 times
...
JH81
1 year, 4 months ago
Got this question and case study 6/29/2023 and passed with 850. MASL/Graph is correct.
upvoted 1 times
...
OPT_001122
1 year, 11 months ago
MSAL MS Graph
upvoted 7 times
...
coffecold
2 years, 1 month ago
Why...o...why are so many of the revealed answers incorrect? Without the topic discussions you would have hard times...
upvoted 12 times
Ciupaz
1 year, 1 month ago
You're right.
upvoted 1 times
...
...
Ishan_63
2 years, 1 month ago
Microsoft Graph API is used in order to get user provide information from Azure AD. Key valult is used to manage Secrets, Certificates and Keys.
upvoted 2 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel