HOTSPOT - For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point. Hot Area:
Suggested Answer:
Box 1: No - Authorization to access Azure resources can be provided by other identity providers by using federation. A commonly used example of this is to federate your on- premises Active Directory environment with Azure AD and use this federation for authentication and authorization.
Box 2: Yes - As described above, third-party cloud services and on-premises Active Directory can be used to access Azure resources. This is known as 'federation'. Federation is a collection of domains that have established trust. The level of trust may vary, but typically includes authentication and almost always includes authorization. A typical federation might include a number of organizations that have established trust for shared access to a set of resources.
Box 3: Yes - Azure Active Directory (Azure AD) is a centralized identity provider in the cloud. This is the primary built-in authentication and authorization service to provide secure access to Azure resources. References: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/whatis-fed https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-scenarios
False.
Authorization to access Azure resources can be provided not only to Azure Active Directory (AD) users but also to various other entities, including:
Groups: You can assign roles to Azure AD groups, which allows you to manage permissions for multiple users collectively.
Service Principals: These are identities created for applications or services to access Azure resources programmatically.
Managed Identities: These are identities assigned to Azure services (such as virtual machines, app services, etc.) to authenticate to Azure services without managing credentials.
Guest Users: External users from other organizations can be granted access to resources as guest users in Azure AD.
These entities can be assigned roles and permissions using Azure Role-Based Access Control (RBAC) to manage access to Azure resources.
#3 - Azure App Service provides built-in authentication and authorization capabilities (sometimes referred to as "Easy Auth") - https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization
Ahh, but statement is "...secure access to Azure resources." whereas Azure App Service is just for the App Service. But RBAC would provide authorization.
Took the exam 12/30/21. This was the only resource I used to study. Thank you examtopics and all of you guys for your comments. Make sure to go through all the questions twice and you will pass. Good luck everyone!
yep past 3 exams done the same thing and passed, read through once to understand then go through again so its familiar and locked in (3 times if you worried)
Azure Active Directory (Azure AD) is a centralized identity provider in the cloud. Delegating authentication and authorization to it enables scenarios such as:
Conditional Access policies that require a user to be in a specific location.
The use of multi-factor authentication, which is sometimes called two-factor authentication or 2FA.
Enabling a user to sign in once and then be automatically signed in to all of the web apps that share the same centralized directory. This capability is called single sign-on (SSO).
3rd box - yes
https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-vs-authorization
I recall from training the difference between authentication and authorization, just thinking of it i think is hould be No, No - does not mean you are authorized to access resources - and Yes. A week away from my test, any good soul that can help understanding this?
This section is not available anymore. Please use the main Exam Page.AZ-900 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
monsigs
Highly Voted 4 years, 8 months agoJustSignalingVirtues
2 years, 11 months agokachraSeth
4 years, 8 months agoTakumaK
4 years, 2 months agoxmd_5a
3 years, 11 months agoturtle666
Highly Voted 5 years, 3 months agoVioloncello
3 years, 9 months agoNoursBear
Most Recent 7 months, 2 weeks ago126e81f
8 months, 2 weeks agob274b54
10 months agosiculoct
11 months agozellck
2 years, 3 months agooysterbaby
2 years, 11 months agooysterbaby
2 years, 11 months agoMS_Learner
3 years, 2 months agotechgirl77
3 years, 4 months agoGresch123123
3 years agoMoondroid
3 years, 4 months agomikamozg
3 years, 5 months agomikamozg
3 years, 5 months agostarseed
3 years, 10 months agopanal
4 years, 2 months agoMrNY007
4 years, 2 months agoWoodlandsu35
4 years, 2 months agomikl
4 years, 3 months ago