Microsoft Azure Administrator Associate AZ-104 Practice Question
A company wants to assign permissions to users for accessing data in a storage account without sharing account keys. Which method should they use to achieve this?
Use Shared Access Signatures
Distribute the storage account access keys to users
Integrate the storage account with Azure Active Directory
Integrating the storage account with Azure Active Directory (Azure AD) allows the company to assign permissions to users through role-based access control (RBAC) without sharing access keys. This enhances security by managing permissions centrally and reduces the risk associated with key distribution. Using Shared Access Signatures involves generating tokens that could be misused if shared improperly. Distributing access keys compromises the security of the entire storage account, and connection strings do not provide a method for assigning user-specific permissions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Azure Active Directory (Azure AD) and its benefits?
Open an interactive chat with Bash
Can you explain what Role-Based Access Control (RBAC) is?
Open an interactive chat with Bash
What are Shared Access Signatures, and why are they considered less secure?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access