Question 1

To leverage your organization's key management standards and ensure that Azure doesn't have access to keys, which of the following configurations should you use for your Azure Storage?

Options :

A : Azure Managed Keys

B : Service Managed Keys

C : Customer Managed Keys

D : RBAC keys

Answer: C

Question 2

You have an Azure Sentinel deployment.

You need to create a scheduled query rule named Rule1.

What should you use to define the query rule logic for Rule1?

Options :

A : a Transact-SQL statement

B : a JSON definition

C : GraphQL

D : a Kusto query

Answer: D

Question 3

You have an Azure subscription that is associated with an Azure Active Directory (Azure AD) tenant.

When a developer attempts to register an app named App1 in the tenant, the developer receives the error message shown in the following exhibit.

You need to ensure that the developer can register App1 in the tenant.

What should you do for the tenant?

Options :

A : Modify the Directory properties.

B : Set Enable Security defaults to Yes.

C : Configure the Consent and permissions settings for enterprise applications.

D : Modify the User settings.

Answer: D

Question 4

You have an application that needs access to an Azure Blob Storage. Which method provides identity-based authentication and authorization for your Azure services?

Options :

A : Shared access signature (SAS)

B : Entra ID

C : Storage account access keys

D : Anonymous public read access

Answer: B

Question 5

You have an Azure subscription that contains the Azure App Service web apps shown in the following table.

You upload a private key certificate named Cert1.pfx to App1.

Which apps can use Cert1?

Options :

A : App1 only

B : App1 and App2 only

C : App1 and App4 only

D : App1, App2, and App3 only

E : App1, App2, App3, and App4

Answer: C