ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam DP-203 All Questions

View all questions & answers for the DP-203 exam
Go to Exam

Exam DP-203 topic 3 question 35 discussion

Actual exam question from Microsoft's DP-203
Question #: 35
Topic #: 3
[All DP-203 Questions]

HOTSPOT
-

You have an Azure Data Lake Storage Gen2 account named account1 that contains the resources shown in the following table.



You need to configure access control lists (ACLs) to allow a user named User1 to delete File1. User1 is NOT assigned any role-based access control (RBAC) roles for account1. The solution must use the principle of least privilege.

Which type of ACL should you configure for each resource? To answer select the appropriate options in the answer area.

Show Suggested Answer Hide Answer
Suggested Answer:
by Ahmad_Abukhater at April 9, 2023, 11:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BPW
Highly Voted 2 years, 2 months ago
Answer is --x/ -wx/ --- https://learn.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control
upvoted 49 times
GiuseppeTanda
5 months, 3 weeks ago
Exactly: Path example: /Oregon/Portland/Data.txt Operation: Delete Data.txt ACL type for path: --X/--X/-WX/---
upvoted 1 times
...
...
Ahmad_Abukhater
Highly Voted 2 years, 2 months ago
last box file1 should be --- (Frist option) https://learn.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control
upvoted 8 times
DataEngineer7331
2 years, 2 months ago
According to this your Link, the Directory should have "-WX" and the File "- - -"
upvoted 1 times
...
vctrhugo
2 years ago
"So long as the previous two conditions are true."
upvoted 1 times
...
...
renan_ineu
Most Recent 9 months, 2 weeks ago
As the general response confirms, it's X, XW and whatever. The reason for this is that when you add or remove a file from a directory, you actually change the directory, so the file's permission means little. You will need X permission to transverse (navigate) until the directory containing the file, so X is required on all directories.
upvoted 1 times
...
renan_ineu
10 months ago
The correct answers are --X, --WX, and --- permissions, according to the documentation in the link below. The example is the same, just with different names. Refer to the table titled "Common scenarios related to ACL permissions" and look for the delete data operation. Below the table, there's a note that states: "As shown in the previous table, write permissions on the file are not required to delete it as long as the directory permissions are set properly. However, to delete a directory and all of its contents, the parent directory must have Write + Execute permissions." Since the question asks about permissions for deleting a file and not the directory, no additional permissions are needed on the file as long as the directory has the appropriate Write and Execute permissions. https://learn.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control#common-scenarios-related-to-acl-permissions
upvoted 1 times
...
7082935
11 months ago
Guys, the question wants "least privileged". The user must be able to delete only this file. They should not be able to delete ANY file in this directory, so answer should be --x / --x / -wx
upvoted 5 times
...
Alongi
1 year, 2 months ago
--X -WX --- obviously!
upvoted 2 times
...
be8a152
1 year, 4 months ago
X,WX,--
upvoted 1 times
...
Azure_2023
1 year, 5 months ago
Write permissions on the file are not required to delete it as long as the previous two conditions are true.
upvoted 2 times
...
Azure_2023
1 year, 5 months ago
Delete File1 --X / -WX / ---
upvoted 1 times
...
matiandal
1 year, 7 months ago
Correct Answer: --X, -WX, --- IN general : X until the last folder, the last forder needs WX, and on the file needs nothing( --- ) R: Common scenarios related to permissions https://learn.microsoft.com/en-us/azure/data-lake-store/data-lake-store-access-control#common-scenarios-related-to-permissions
upvoted 3 times
SenMia
1 year, 6 months ago
please clarify why should Directory1 be --WX? why write access for a directory? shouldn't it be just --X?
upvoted 1 times
...
...
kkk5566
1 year, 10 months ago
--x/ --x/ ---
upvoted 2 times
kkk5566
1 year, 9 months ago
https://learn.microsoft.com/en-us/azure/data-lake-store/data-lake-store-access-control#common-scenarios-related-to-permissions
upvoted 1 times
wanchihh
1 year, 9 months ago
--x/ -wx/ ---
upvoted 2 times
...
...
...
[Removed]
1 year, 12 months ago
--x/ -wx/ ---
upvoted 4 times
...
vctrhugo
2 years ago
The solution must use the principle of least privilege!!! You shouldn't grant -WX to the entire Directory1. Instead, do -x / --w
upvoted 2 times
...
mamahani
2 years, 2 months ago
you do not need any permissions on a file itself to delete it; you only need permissions on the folder where the file resides; https://learn.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control#common-scenarios-related-to-acl-permissions so answer -x / -wx / ---
upvoted 6 times
andjurovicela
1 year, 11 months ago
I agree with everything except the write&execute permission for directory. According to the "famous" link on ACLs the directory permissions should be only execute for deleting actions.
upvoted 1 times
DataEngDP
1 year, 10 months ago
You need write and execute in order to create child items in a directory. And for deleting you dont need permissions so ---.
upvoted 2 times
...
wanchihh
1 year, 9 months ago
Not according to this link https://learn.microsoft.com/en-us/azure/data-lake-store/data-lake-store-access-control#common-scenarios-related-to-permissions The directory on which the file resides have to be -wx in order to delete the file.
upvoted 1 times
wanchihh
1 year, 9 months ago
The link should be this instead: https://learn.microsoft.com/en-us/azure/storage/blobs/data-lake-storage-access-control#common-scenarios-related-to-acl-permissions
upvoted 1 times
...
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel