ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-100 All Questions

View all questions & answers for the SC-100 exam
Go to Exam

Exam SC-100 topic 5 question 3 discussion

Actual exam question from Microsoft's SC-100
Question #: 3
Topic #: 5
[All SC-100 Questions]

HOTSPOT
-

You use Azure Policy with Azure Repos to implement continuous integration and continuous deployment (CI/CD) workflows.

You need to recommend best practices to secure the stages of the CI/CD workflows based on the Microsoft Cloud Adoption Framework for Azure.

What should you include in the recommendation for each stage? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by OK2020 at April 7, 2023, 7:44 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
janesb
Highly Voted 2 years, 2 months ago
Incorrect Answer GIT Workflow ---> Protected Branch Secure Deployment credentials --> Keyvault Ref : https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/secure/best-practices/secure-devops
upvoted 39 times
...
OK2020
Highly Voted 2 years, 2 months ago
answers should be the opposite: 1. protected branches 2. Keyvolt https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/secure/best-practices/secure-devops
upvoted 19 times
...
6c0ca3d
Most Recent 1 month, 2 weeks ago
answers should be the opposite: 1. protected branches 2. Keyvolt
upvoted 1 times
...
TomRoute66
8 months, 4 weeks ago
The answer was inverted, and it's wrong. Please check others' answers.
upvoted 2 times
...
Socgen1
11 months, 2 weeks ago
1. Protected Branches 2. Azure Key vault These two are right answer
upvoted 2 times
...
tocane
1 year, 5 months ago
1. Protected branches 2. Azure Key Vault
upvoted 3 times
...
smanzana
1 year, 8 months ago
1. Protected branches 2. Azure Key Vault
upvoted 2 times
...
ConanBarb
1 year, 9 months ago
Protected branches Create custom roles for build agents https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/secure/best-practices/secure-devops
upvoted 1 times
...
zellck
2 years, 1 month ago
1. Protected branches 2. Azure Key Vault https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/secure/best-practices/secure-devops#restrict-access-to-protected-branches https://learn.microsoft.com/en-us/azure/cloud-adoption-framework/secure/best-practices/secure-devops#azure-key-vault If your CI platform supports it, consider storing credentials in a dedicated secret store, for example Azure Key Vault. Credentials are fetched at runtime by the build agent and your attack surface is reduced.
upvoted 7 times
zellck
2 years, 1 month ago
Gotten this in May 2023 exam.
upvoted 7 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel