Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-300 Exam - Topic 1 Question 99 Discussion

You have an Azure subscription that contains a storage account named storage1 and a web app named WebApp1. WebApp1 uses a system-assigned managed identity.You need to ensure that WebApp1 can read and write files to storage1 by using the system-assigned managed identity.What should you configure for storage1 in the Azure portal?
B) the Access control (1AM) settings
A) the File share settings
C) a shared access signature (SAS)
D) data protection
E) access keys

Microsoft SC-300 Exam - Topic 1 Question 99 Discussion

Actual exam question for Microsoft's SC-300 exam
Question #: 99
Topic #: 1
[All SC-300 Questions]

You have an Azure subscription that contains a storage account named storage1 and a web app named WebApp1. WebApp1 uses a system-assigned managed identity.

You need to ensure that WebApp1 can read and write files to storage1 by using the system-assigned managed identity.

What should you configure for storage1 in the Azure portal?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Carey at Sep 11, 2024, 04:39 AM

Limited Time Offer

25%

Off

Get Premium SC-300 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Ailene
6 months ago
Not sure about that, seems too easy!
upvoted 0 times
...
Jina
6 months ago
Wait, can the managed identity really access storage without keys?
upvoted 0 times
...
Raul
7 months ago
I thought a shared access signature would work too.
upvoted 0 times
...
Olive
7 months ago
Totally agree, IAM is the way to go!
upvoted 0 times
...
Frank
7 months ago
You need to configure the Access control (IAM) settings.
upvoted 0 times
...
Penney
7 months ago
I feel like access keys might be too broad for this scenario. It seems like we should focus on the managed identity specifically.
upvoted 0 times
...
Lorrine
8 months ago
I practiced a similar question, and I believe the system-assigned managed identity needs specific role assignments in IAM.
upvoted 0 times
...
Velda
8 months ago
I'm not entirely sure, but I remember something about shared access signatures. Could that be relevant here?
upvoted 0 times
...
Shanda
8 months ago
I think we need to set permissions for WebApp1 to access storage1, so maybe it's the Access control (IAM) settings?
upvoted 0 times
...
Doretha
8 months ago
I'm a little confused by this question. I know we need to set something up in the storage account to allow the web app to access it, but I'm not sure if it's the File share settings, a shared access signature, or something else. I'll need to think this through carefully and review my Azure security and storage concepts.
upvoted 0 times
...
Vi
8 months ago
Okay, I've got this. The key here is that we need to configure the storage account to allow the system-assigned managed identity of the web app to access it. That means we need to go to the Access control (IAM) settings of the storage account and add the managed identity as a role assignment, probably with the Storage Blob Data Contributor role. Easy peasy!
upvoted 0 times
...
Beckie
8 months ago
Hmm, I'm a bit unsure about this one. I know we need to configure something in the storage account to allow the web app to access it, but I'm not sure if it's the File share settings, the Access control (IAM) settings, or something else. I'll need to review my notes on managed identities and storage account permissions.
upvoted 0 times
...
Matilda
8 months ago
This seems straightforward. I think the answer is B - the Access control (IAM) settings, since we need to grant the system-assigned managed identity of the web app the necessary permissions to access the storage account.
upvoted 0 times
...
Elke
2 years ago
I bet it's D) data protection. We need to make sure the files in the storage account are properly secured, right? *winks* Just kidding, that's probably not the right answer.
upvoted 0 times
Paris
2 years ago
C) a shared access signature (SAS)
upvoted 0 times
...
An
2 years ago
B) the Access control (IAM) settings
upvoted 0 times
...
Maryln
2 years ago
A) the File share settings
upvoted 0 times
...
...
Judy
2 years ago
I think both options could work, but IAM settings might be more secure in this case.
upvoted 0 times
...
Charlesetta
2 years ago
Haha, definitely not C) a shared access signature (SAS). That would just give a temporary, limited-access token, not the full permissions we need. What were the exam writers thinking with that one?
upvoted 0 times
...
Derrick
2 years ago
That's a good point, Walker. A SAS could also be a valid option for granting access to WebApp1.
upvoted 0 times
...
Walker
2 years ago
But wouldn't creating a shared access signature (SAS) also work for this scenario?
upvoted 0 times
...
Judy
2 years ago
I agree with Derrick, setting up the IAM settings should allow WebApp1 to access storage1.
upvoted 0 times
...
Lashon
2 years ago
Hmm, I'm not sure. Maybe it's E) access keys? That would give WebApp1 the credentials to access the storage account, right? *scratches head*
upvoted 0 times
Jamika
2 years ago
You're welcome! Let me know if you need any help with the configuration.
upvoted 0 times
...
Sueann
2 years ago
Oh, I see. Thanks for clarifying. I'll make sure to configure the Access control settings instead.
upvoted 0 times
...
Crissy
2 years ago
You should configure B) the Access control (IAM) settings for storage1. That way you can assign the necessary permissions to the system-assigned managed identity of WebApp1.
upvoted 0 times
...
Alease
2 years ago
No, it's not E) access keys. That's not the best practice for granting access to storage accounts.
upvoted 0 times
...
...
Leota
2 years ago
The correct answer is B) the Access control (IAM) settings. We need to configure the storage account's IAM settings to grant the WebApp1 managed identity the necessary permissions to read and write files.
upvoted 0 times
Ariel
2 years ago
Yes, that's correct. By configuring the IAM settings, we can grant the necessary permissions to the WebApp1 managed identity.
upvoted 0 times
...
Refugia
2 years ago
I think we need to configure the Access control (IAM) settings for storage1.
upvoted 0 times
...
...
Derrick
2 years ago
I think we need to configure the Access control (IAM) settings for storage1.
upvoted 0 times
...

Save Cancel