Valid AZ-304 Dumps shared by ExamDiscuss.com for Helping Passing AZ-304 Exam! ExamDiscuss.com now offer the newest AZ-304 exam dumps, the ExamDiscuss.com AZ-304 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com AZ-304 dumps with Test Engine here:
Access AZ-304 Dumps Premium Version
(288 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 51/82
You are designing an Azure resource deployment that will use Azure Resource Manager templates. The deployment will use Azure Key Vault to store secrets.
You need to recommend a solution to meet the following requirements:
Prevent the IT staff that will perform the deployment from retrieving the secrets directly from Key Vault.
Use the principle of least privilege.
Which two actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
You need to recommend a solution to meet the following requirements:
Prevent the IT staff that will perform the deployment from retrieving the secrets directly from Key Vault.
Use the principle of least privilege.
Which two actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
Correct Answer: B,D
Explanation
B: To access a key vault during template deployment, set enabledForTemplateDeployment on the key vault to true.
D: The user who deploys the template must have the Microsoft.KeyVault/vaults/deploy/action permission for the scope of the resource group and key vault.
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault-parameter
https://docs.microsoft.com/en-us/azure/key-vault/general/overview-security
B: To access a key vault during template deployment, set enabledForTemplateDeployment on the key vault to true.
D: The user who deploys the template must have the Microsoft.KeyVault/vaults/deploy/action permission for the scope of the resource group and key vault.
Reference:
https://docs.microsoft.com/en-us/azure/azure-resource-manager/templates/key-vault-parameter
https://docs.microsoft.com/en-us/azure/key-vault/general/overview-security
- Question List (82q)
- Question 1: Your company has an on-premises Windows HPC cluster. The clu...
- Question 2: You plan to create an Azure environment that will contain a ...
- Question 3: You have five .NET Core applications that run on 10 Azure vi...
- Question 4: Your company plans to publish APIs for its services by using...
- Question 5: You are planning an Azure Storage solution for sensitive dat...
- Question 6: You deploy an Azure virtual machine that runs an ASP.NET app...
- Question 7: Your company develops a web service that is deployed to an A...
- Question 8: You use Azure virtual machines to run a custom application t...
- Question 9: You store web access logs data in Azure Blob storage. You pl...
- Question 10: You need to recommend a solution for protecting the content ...
- Question 11: You have an Azure subscription. The subscription contains Az...
- Question 12: You manage an application instance. The application consumes...
- Question 13: You need to recommend a high-availability solution for the m...
- Question 14: You have an on-premises file server that stores 2 TB of data...
- Question 15: A company named Contoso Ltd., has a single-domain Active Dir...
- Question 16: You have an on-premises application named App1 that uses an ...
- Question 17: A company plans to implement an HTTP-based API to support a ...
- Question 18: Note: This question is part of a series of questions that pr...
- Question 19: You have 100 servers that run Windows Server 2012 R2 and hos...
- Question 20: You have an Azure subscription that contains resources in th...
- Question 21: Note: This question is part of a series of questions that pr...
- Question 22: You have a web application that uses a MongoDB database. You...
- Question 23: You have an Azure subscription that contains a custom applic...
- Question 24: You are designing an order processing system in Azure that w...
- Question 25: You have an Azure Active Directory (Azure AD) tenant named C...
- Question 26: You deploy two instances of an Azure web app. One instance i...
- Question 27: You have an Azure subscription that contains two application...
- Question 28: You have an Azure Active Directory (Azure AD) tenant. You pl...
- Question 29: Your company has 20 web APIs that were developed in-house. T...
- Question 30: You need to design a highly available Azure SQL database tha...
- Question 31: You have 200 resource groups across 20 Azure subscriptions. ...
- Question 32: You have a virtual machine scale set named SS1. You configur...
- Question 33: You have an on-premises Hyper-V cluster that hosts 20 virtua...
- Question 34: Note: This question is part of a series of questions that pr...
- Question 35: Note: This question Is part of a series of questions that pr...
- Question 36: You are designing an Azure solution. The network traffic for...
- Question 37: Note: This question is part of a series of questions that pr...
- Question 38: You are building an application that will run in a virtual m...
- Question 39: You have an Azure virtual machine named VM1 that runs Window...
- Question 40: Note: This question is part of a series of questions that pr...
- Question 41: Note: This question is part of series of questions that pres...
- Question 42: The developers at your company are building a static web app...
- Question 43: You have an on-premises Active Directory forest and an Azure...
- Question 44: You use Azure Application Insights. You plan to use continuo...
- Question 45: Your company plans to use a separate Azure subscription for ...
- Question 46: You plan to create a storage account and to save the files a...
- Question 47: You plan to deploy 10 applications to Azure. The application...
- Question 48: Note: This question is part of a series of questions that pr...
- Question 49: You have data files in Azure Blob storage. You plan to trans...
- Question 50: You have multiple Anne deployments. You plan to implement Az...
- Question 51: You are designing an Azure resource deployment that will use...
- Question 52: You have an Azure subscription named Subscription1 that is l...
- Question 53: You configure the Diagnostics settings for an Azure SQL data...
- Question 54: You plan to create an Azure environment that will have a roo...
- Question 55: Your company purchases an app named App1. You plan to tun Ap...
- Question 56: You plan to store data in Azure Blob storage for many years....
- Question 57: You need to deploy resources to host a stateless web app in ...
- Question 58: You have an application that sends events to an Azure event ...
- Question 59: You need to recommend a data storage strategy for WebApp1. W...
- Question 60: You need to recommend a disaster recovery solution for the b...
- Question 61: Your company deploys an Azure App Service Web App. During te...
- Question 62: Note: This question is part of a series of questions that pr...
- Question 63: You plan to run an image rendering workload in Azure. The wo...
- Question 64: You architect a solution that calculates 3D geometry from he...
- Question 65: You are designing a solution for a stateless front-end appli...
- Question 66: You need to design a highly available Azure SQL database tha...
- Question 67: You manage an on-premises network and Azure virtual networks...
- Question 68: Your company has users who work remotely from laptops. You p...
- Question 69: Note: This question is part of a series of questions that pr...
- Question 70: You are planning an Azure solution that will host production...
- Question 71: Your deploy Azure App Service Web Apps that connect to on-pr...
- Question 72: You plan to import data from your on-premises environment in...
- Question 73: You have an Azure Active Directory (Azure AD) tenant. You pl...
- Question 74: You are designing a storage solution that will use Azure Blo...
- Question 75: You need to recommend a solution for the collection of secur...
- Question 76: What should you include in the identity management strategy ...
- Question 77: You need to recommend an Azure Storage Account configuration...
- Question 78: Note: This question is part of series of questions that pres...
- Question 79: You have an Azure subscription that contains the SQL servers...
- Question 80: You have an Azure App Service Web App that includes Azure Bl...
- Question 81: A company has an existing web application that runs on virtu...
- Question 82: Your company has the infrastructure shown in the following t...
