New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-204 Exam - Topic 1 Question 48 Discussion

Actual exam question for Microsoft's AZ-204 exam
Question #: 48
Topic #: 1
[All AZ-204 Questions]

You have an application that includes an Azure Web app and several Azure Function apps. Application secrets including connection strings and certificates are stored in Azure Key Vault.

Secrets must not be stored in the application or application runtime environment. Changes to Azure Active Directory (Azure AD) must be minimized.

You need to design the approach to loading application secrets.

What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: C

Use Key Vault references for App Service and Azure Functions.

Key Vault references currently only support system-assigned managed identities. User-assigned identities cannot be used.


https://docs.microsoft.com/en-us/azure/app-service/app-service-key-vault-references

by Willard at May 08, 2022, 10:02 AM

Limited Time Offer

25%

Off

Get Premium AZ-204 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Rickie
4 months ago
Not sure about D, using a certificate sounds risky.
upvoted 0 times
...
Denae
4 months ago
Totally agree with A! Managed Identities are the way to go.
upvoted 0 times
...
Glen
4 months ago
Wait, why not just use B? Seems simpler.
upvoted 0 times
...
Linwood
5 months ago
I think C could work too, but it might be overkill.
upvoted 0 times
...
Rolande
5 months ago
A is the best option for managing secrets securely.
upvoted 0 times
...
Quentin
5 months ago
I feel like using a Service Principal with a client secret might not align with the requirement to minimize changes to Azure AD.
upvoted 0 times
...
Corrinne
5 months ago
I practiced a similar question where we had to choose between Service Principals and Managed Identities, and I think Managed Identities are generally more secure.
upvoted 0 times
...
Gerardo
5 months ago
I remember we discussed Managed Identities in class, but I'm not sure if a user-assigned one is the best choice here.
upvoted 0 times
...
Rosann
5 months ago
I think option C sounds familiar, but I’m a bit confused about the difference between system assigned and user assigned Managed Identities.
upvoted 0 times
...
Ryann
5 months ago
This seems like a straightforward .NET Framework version question. I'll carefully read through the options and think about which one is most likely to be required for the Traps agent on Windows 7.
upvoted 0 times
...
Brunilda
5 months ago
This seems pretty straightforward. I'd probably go with either option A or D - clicking the Database Tools tab and selecting Delete, or right-clicking the table and choosing Delete from the menu. Both of those seem like logical ways to delete a table.
upvoted 0 times
...
Martha
5 months ago
Hmm, I'm a bit unsure about this. I thought AlertDialog was used for temporary notifications, but the question description doesn't seem quite right. I'll have to think this through carefully.
upvoted 0 times
...
Lili
5 months ago
I feel like time zone might be required too, but I can't clearly recall if that's really a must.
upvoted 0 times
...

Save Cancel