New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-300 Exam - Topic 1 Question 99 Discussion

Actual exam question for Microsoft's SC-300 exam
Question #: 99
Topic #: 1
[All SC-300 Questions]

You have an Azure subscription that contains a storage account named storage1 and a web app named WebApp1. WebApp1 uses a system-assigned managed identity.

You need to ensure that WebApp1 can read and write files to storage1 by using the system-assigned managed identity.

What should you configure for storage1 in the Azure portal?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Carey at Sep 11, 2024, 04:39 AM

Limited Time Offer

25%

Off

Get Premium SC-300 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Ailene
3 months ago
Not sure about that, seems too easy!
upvoted 0 times
...
Jina
3 months ago
Wait, can the managed identity really access storage without keys?
upvoted 0 times
...
Raul
3 months ago
I thought a shared access signature would work too.
upvoted 0 times
...
Olive
4 months ago
Totally agree, IAM is the way to go!
upvoted 0 times
...
Frank
4 months ago
You need to configure the Access control (IAM) settings.
upvoted 0 times
...
Penney
4 months ago
I feel like access keys might be too broad for this scenario. It seems like we should focus on the managed identity specifically.
upvoted 0 times
...
Lorrine
4 months ago
I practiced a similar question, and I believe the system-assigned managed identity needs specific role assignments in IAM.
upvoted 0 times
...
Velda
4 months ago
I'm not entirely sure, but I remember something about shared access signatures. Could that be relevant here?
upvoted 0 times
...
Shanda
5 months ago
I think we need to set permissions for WebApp1 to access storage1, so maybe it's the Access control (IAM) settings?
upvoted 0 times
...
Doretha
5 months ago
I'm a little confused by this question. I know we need to set something up in the storage account to allow the web app to access it, but I'm not sure if it's the File share settings, a shared access signature, or something else. I'll need to think this through carefully and review my Azure security and storage concepts.
upvoted 0 times
...
Vi
5 months ago
Okay, I've got this. The key here is that we need to configure the storage account to allow the system-assigned managed identity of the web app to access it. That means we need to go to the Access control (IAM) settings of the storage account and add the managed identity as a role assignment, probably with the Storage Blob Data Contributor role. Easy peasy!
upvoted 0 times
...
Beckie
5 months ago
Hmm, I'm a bit unsure about this one. I know we need to configure something in the storage account to allow the web app to access it, but I'm not sure if it's the File share settings, the Access control (IAM) settings, or something else. I'll need to review my notes on managed identities and storage account permissions.
upvoted 0 times
...
Matilda
5 months ago
This seems straightforward. I think the answer is B - the Access control (IAM) settings, since we need to grant the system-assigned managed identity of the web app the necessary permissions to access the storage account.
upvoted 0 times
...
Elke
1 year ago
I bet it's D) data protection. We need to make sure the files in the storage account are properly secured, right? *winks* Just kidding, that's probably not the right answer.
upvoted 0 times
Paris
1 year ago
C) a shared access signature (SAS)
upvoted 0 times
...
An
1 year ago
B) the Access control (IAM) settings
upvoted 0 times
...
Maryln
1 year ago
A) the File share settings
upvoted 0 times
...
...
Judy
1 year ago
I think both options could work, but IAM settings might be more secure in this case.
upvoted 0 times
...
Charlesetta
1 year ago
Haha, definitely not C) a shared access signature (SAS). That would just give a temporary, limited-access token, not the full permissions we need. What were the exam writers thinking with that one?
upvoted 0 times
...
Derrick
1 year ago
That's a good point, Walker. A SAS could also be a valid option for granting access to WebApp1.
upvoted 0 times
...
Walker
1 year ago
But wouldn't creating a shared access signature (SAS) also work for this scenario?
upvoted 0 times
...
Judy
1 year ago
I agree with Derrick, setting up the IAM settings should allow WebApp1 to access storage1.
upvoted 0 times
...
Lashon
1 year ago
Hmm, I'm not sure. Maybe it's E) access keys? That would give WebApp1 the credentials to access the storage account, right? *scratches head*
upvoted 0 times
Jamika
1 year ago
You're welcome! Let me know if you need any help with the configuration.
upvoted 0 times
...
Sueann
1 year ago
Oh, I see. Thanks for clarifying. I'll make sure to configure the Access control settings instead.
upvoted 0 times
...
Crissy
1 year ago
You should configure B) the Access control (IAM) settings for storage1. That way you can assign the necessary permissions to the system-assigned managed identity of WebApp1.
upvoted 0 times
...
Alease
1 year ago
No, it's not E) access keys. That's not the best practice for granting access to storage accounts.
upvoted 0 times
...
...
Leota
1 year ago
The correct answer is B) the Access control (IAM) settings. We need to configure the storage account's IAM settings to grant the WebApp1 managed identity the necessary permissions to read and write files.
upvoted 0 times
Ariel
1 year ago
Yes, that's correct. By configuring the IAM settings, we can grant the necessary permissions to the WebApp1 managed identity.
upvoted 0 times
...
Refugia
1 year ago
I think we need to configure the Access control (IAM) settings for storage1.
upvoted 0 times
...
...
Derrick
1 year ago
I think we need to configure the Access control (IAM) settings for storage1.
upvoted 0 times
...

Save Cancel