ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-100 All Questions

View all questions & answers for the SC-100 exam
Go to Exam

Exam SC-100 topic 9 question 2 discussion

Actual exam question from Microsoft's SC-100
Question #: 2
Topic #: 10
[All SC-100 Questions]

HOTSPOT -
You need to recommend a strategy for App Service web app connectivity. The solution must meet the landing zone requirements.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Virtual network integration
Integrate your app with an Azure virtual network.
With Azure virtual networks, you can place many of your Azure resources in a non-internet-routable network. The App Service virtual network integration feature enables your apps to access resources in or through a virtual network.

Box 2: Private endpoints -
Ensure that the Azure virtual machines in each landing zone communicate with Azure App Service web apps in the same zone over the Microsoft backbone network, rather than over public endpoints.
A virtual machine can connect to the web app across the private endpoint.
Reference:
https://docs.microsoft.com/en-us/azure/app-service/overview-vnet-integration https://docs.microsoft.com/en-us/azure/private-link/tutorial-private-endpoint-webapp-portal
by TheMCT at Sept. 9, 2022, 1:19 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
TheMCT
Highly Voted 1 year, 7 months ago
Box 1: Virtual Network Integration - correct Virtual network integration gives your app access to resources in your virtual network, but it doesn't grant inbound private access to your app from the virtual network. Box 2: Private Endpoints. - correct You can use Private Endpoint for your Azure Web App to allow clients located in your private network to securely access the app over Private Link.
upvoted 38 times
Domza
3 months, 1 week ago
Hint: Microsoft recommends use of Azure Private Link and private endpoints for secure and private access to services hosted on the Azure platform. Azure Private Link provisions a network interface into a virtual network of your choosing for Azure services such as Azure Storage or Azure SQL
upvoted 1 times
...
...
zellck
Highly Voted 11 months ago
1. Virtual network integration 2. Private endpoints https://learn.microsoft.com/en-us/azure/app-service/overview-vnet-integration With Azure virtual networks, you can place many of your Azure resources in a non-internet-routable network. The App Service virtual network integration feature enables your apps to access resources in or through a virtual network. https://learn.microsoft.com/en-us/azure/app-service/networking/private-endpoint You can use private endpoint for your App Service apps to allow clients located in your private network to securely access the app over Azure Private Link. The private endpoint uses an IP address from your Azure virtual network address space. Network traffic between a client on your private network and the app traverses over the virtual network and a Private Link on the Microsoft backbone network, eliminating exposure from the public Internet.
upvoted 5 times
...
cyber_sa
Most Recent 6 months, 2 weeks ago
got this in exam 6oct23. passed with 896 marks. I answered as per given answer
upvoted 5 times
...
slobav
6 months, 4 weeks ago
Box1: Virtual network integration Box2: Private endpoints https://www.youtube.com/watch?v=YJqZjdzC9xE&list=PLQ2ktTy9rklhzzkSEZvDZT4QSIVUQZD-Y&index=7 Question 97
upvoted 2 times
...
Tanidanindo
7 months, 1 week ago
The answer for second question should be service endpoints. The question mentions Microsoft backbone which indicates service endpoints, not vNet private IP which would have suggested private endpoints. https://learn.microsoft.com/en-us/azure/virtual-network/virtual-network-service-endpoints-overview
upvoted 3 times
...
KallMeDan
11 months, 3 weeks ago
I would consider box 1 to be virtual network integration as it involves using an app service web app. But it must also be noted that virtual network integration doesn't work without a service endpoint. Network integration uses the service endpoint to further lockdown the public access to the web app.
upvoted 1 times
...
Firedragon
1 year, 2 months ago
Service endpoint doesn't have VM, so Virtual Network Integration is the only choice. https://learn.microsoft.com/en-us/azure/virtual-network/virtual-network-service-endpoints-overview
upvoted 1 times
...
TJ001
1 year, 3 months ago
perfect correct answers given
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago