Microsoft Exam SC-300 Topic 1 Question 93 Discussion

Actual exam question for Microsoft's SC-300 exam

Question #: 93
Topic #: 1

You have an Azure subscription that contains a virtual machine named VM1 and an Azure key vault named Vault1. VM1 has a system-assigned managed identity. You need to ensure that VM1 can retrieve the values of secrets stored in Vault 1. The solution must minimize administrative effort. What should you do first?

AConfigure the Resource access settings for Vault1.

BConfigure the permissions model for Vault1

CAdd a user-assigned managed identity to VM1.

DAssign an Azure role to VM1.

Show Suggested Answer

Suggested Answer: D

by Jerry at Jun 23, 2024, 01:21 AM

Limited Time Offer

25%

Off

Get Premium SC-300 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Brandon

10 months ago

Hold up, is this a trick question? I'm pretty sure the answer is to just give VM1 the keys to Vault1 and call it a day. Minimize administrative effort, am I right?

upvoted 0 times

...

Alethea

10 months ago

C is the solution. Adding a user-assigned managed identity to VM1 is the best way to authenticate and authorize access to Vault1. Managed identities are so much easier than manual credential management.

upvoted 0 times

Daryl

10 months ago

Managed identities are so much easier than manual credential management.

upvoted 0 times

...

Claribel

10 months ago

C is the solution. Adding a user-assigned managed identity to VM1 is the best way to authenticate and authorize access to Vault1.

upvoted 0 times

...

Darnell

11 months ago

B is the way to go. Configuring the permissions model for Vault1 is crucial to control access to the secrets. We don't want just anyone snooping around in there!

upvoted 0 times

Elliot

9 months ago

B is the way to go. Configuring the permissions model for Vault1 is crucial to control access to the secrets. We don't want just anyone snooping around in there!

upvoted 0 times

...

Alberto

9 months ago

A) Configure the Resource access settings for Vault1

upvoted 0 times

...

William

9 months ago

B) Configure the permissions model for Vault1

upvoted 0 times

...

Laurel

9 months ago

D) Assign an Azure role to VM1

upvoted 0 times

...

Dana

9 months ago

Absolutely, we need to make sure only the right people have access.

upvoted 0 times

...

Kristofer

9 months ago

B) Configure the permissions model for Vault1

upvoted 0 times

...

Kiera

11 months ago

I agree with Tanja, assigning an Azure role to VM1 seems like the most efficient solution to minimize administrative effort.

upvoted 0 times

...

Tanja

11 months ago

But wouldn't assigning an Azure role to VM1 be a better option to ensure it can retrieve the values of secrets stored in Vault1?

upvoted 0 times

...

Melita

11 months ago

I disagree, I believe we should add a user-assigned managed identity to VM1 first.

upvoted 0 times

...

Felton

11 months ago

D sounds good to me. Assigning an Azure role to VM1 is the best way to grant the necessary permissions to access Vault1. It's the most secure and scalable option.

upvoted 0 times

Ashlee

10 months ago

I agree, assigning an Azure role to VM1 is the way to go. It's the most efficient way to ensure VM1 can retrieve the values of secrets stored in Vault1.

upvoted 0 times

...

Jade

10 months ago

D sounds good to me. Assigning an Azure role to VM1 is the best way to grant the necessary permissions to access Vault1. It's the most secure and scalable option.

upvoted 0 times

...

Tanja

11 months ago

I think the first thing we should do is configure the Resource access settings for Vault1.

upvoted 0 times

...

Gilberto

11 months ago

I think the answer is A. Configuring the Resource access settings for Vault1 is the first step to ensure VM1 can access the secrets in Vault1. This is the most straightforward approach.

upvoted 0 times