exam questions

Exam AZ-305 All Questions

View all questions & answers for the AZ-305 exam

Exam AZ-305 topic 1 question 16 discussion

Actual exam question from Microsoft's AZ-305
Question #: 16
Topic #: 1
[All AZ-305 Questions]

Your company, named Contoso, Ltd., implements several Azure logic apps that have HTTP triggers. The logic apps provide access to an on-premises web service.
Contoso establishes a partnership with another company named Fabrikam, Inc.
Fabrikam does not have an existing Azure Active Directory (Azure AD) tenant and uses third-party OAuth 2.0 identity management to authenticate its users.
Developers at Fabrikam plan to use a subset of the logic apps to build applications that will integrate with the on-premises web service of Contoso.
You need to design a solution to provide the Fabrikam developers with access to the logic apps. The solution must meet the following requirements:
✑ Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso.
✑ The developers must be able to rely on their existing OAuth 2.0 provider to gain access to the logic apps.
✑ The solution must NOT require changes to the logic apps.
✑ The solution must NOT use Azure AD guest accounts.
What should you include in the solution?

  • A. Azure Front Door
  • B. Azure AD Application Proxy
  • C. Azure AD business-to-business (B2B)
  • D. Azure API Management
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Snownoodles
Highly Voted 2 months, 2 weeks ago
The given answer is correct. API management can use Oauth2 for authorization: https://docs.microsoft.com/en-us/azure/api-management/authorizations-overview
upvoted 23 times
...
Tightbot
Highly Voted 1 year, 11 months ago
"Requests to the logic apps from the developers must be limited to lower rates than the requests from the users at Contoso." - This requirement can be achieved using the 'Limit call rate by key' feature of the API management. https://learn.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies#LimitCallRateByKey https://learn.microsoft.com/en-us/azure/api-management/api-management-sample-flexible-throttling#user-identity-throttling
upvoted 14 times
...
SeMo0o0o0o
Most Recent 3 weeks, 3 days ago
Selected Answer: D
D is correct
upvoted 1 times
...
MeisAdriano
1 month, 2 weeks ago
Selected Answer: D
NOT A: "Azure Front Door" -> BECAUSE: It's an Application Delivery Network, not valid to share the logic. NOT B: "Azure AD Appliction Proxy" -> BECAUSE: NOT C: "Azure AD business-to-business(B2B)" -> BECAUSE: "Fabrikam does not have an existing Azure Active Directory(Azure AD)"
upvoted 2 times
...
23169fd
5 months, 2 weeks ago
Selected Answer: D
Azure API Management is the optimal solution as it: Meets the requirement for rate limiting to manage different user groups. Supports integration with third-party OAuth 2.0 providers. Avoids the need to modify existing logic apps. Provides a secure access mechanism without relying on Azure AD guest accounts.
upvoted 1 times
...
Exams_Prep_2021
1 year, 2 months ago
Got this on Sept. 29, 2023
upvoted 3 times
...
Leocan
1 year, 3 months ago
Selected Answer: D
The solution must NOT use Azure AD guest accounts.
upvoted 2 times
...
Favbolu
1 year, 4 months ago
API IS CORRECT
upvoted 1 times
...
imjoel
1 year, 5 months ago
answer is api mgt
upvoted 1 times
...
yonie
1 year, 7 months ago
Selected Answer: D
Correct is D Not C: Azure AD business-to-business (B2B) uses guest accounts.
upvoted 2 times
...
cluqueg
1 year, 8 months ago
Agree, API management is the the only option.
upvoted 1 times
...
jj22222
1 year, 8 months ago
this one was on the test in 2023
upvoted 3 times
...
NotMeAnyWay
1 year, 8 months ago
Selected Answer: D
D. Azure API Management To provide access to the logic apps for Fabrikam developers while limiting their requests to lower rates than the users at Contoso and allowing them to rely on their existing OAuth 2.0 provider, you should use Azure API Management. You can create an API Management instance and import the logic apps as APIs. Then, you can configure API Management to act as an OAuth 2.0 client to the third-party identity provider used by Fabrikam. This will enable Fabrikam developers to use their existing credentials to authenticate and access the logic apps. Additionally, you can use API Management to apply rate limiting policies to control the number of requests that Fabrikam developers can make.
upvoted 11 times
...
zellck
1 year, 9 months ago
Selected Answer: D
D is the answer. https://learn.microsoft.com/en-us/azure/api-management/authorizations-overview API Management authorizations (preview) simplify the process of managing authorization tokens to OAuth 2.0 backend services. By configuring any of the supported identity providers and creating an authorization using the standardized OAuth 2.0 flow, API Management can retrieve and refresh access tokens to be used inside of API management or sent back to a client. This feature enables APIs to be exposed with or without a subscription key, and the authorization to the backend service uses OAuth 2.0.
upvoted 1 times
...
lanntt
1 year, 9 months ago
API Management is correct
upvoted 2 times
...
rikininetysix
1 year, 9 months ago
Selected Answer: D
Azure Front Door is a CDN service. Azure AD business-to-business (B2B) uses guest accounts. Azure AD Application Proxy is for secure remote access to on-premises web applications. So, the correct answer seems to be 'D'.
upvoted 4 times
...
OPT_001122
1 year, 10 months ago
Selected Answer: D
API management can use Oauth2 for authorization D - correct ans
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...