Microsoft Azure Administrator Associate AZ-104 Practice Question
An administrator wants to grant temporary access to a blob container and have the ability to revoke that access centrally. Which feature should be utilized to achieve this?
Set an expiration date on the shared access signature
Implement a firewall rule to restrict access
Define a stored access policy on the blob container
Configure a network security group for the storage account
By defining a stored access policy on the blob container, the administrator can create shared access signatures (SAS tokens) that are linked to this policy. This allows centralized management, where permissions can be altered or access can be revoked by modifying or deleting the stored access policy. Setting an expiration on the SAS token itself doesn't provide a way to revoke access before the expiration. Firewalls and network security groups control network-level access but do not provide granular control over SAS tokens.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a stored access policy in Azure, and how does it work?
Open an interactive chat with Bash
What is a shared access signature (SAS) and how does it relate to stored access policies?
Open an interactive chat with Bash
Why can't I simply set an expiration date on a SAS token for temporary access?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access