ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-220 All Questions

View all questions & answers for the AZ-220 exam
Go to Exam

Exam AZ-220 topic 2 question 38 discussion

Actual exam question from Microsoft's AZ-220
Question #: 38
Topic #: 2
[All AZ-220 Questions]

You have an Azure IoT hub that uses a Device Provisioning Service (DPS) instance.

For 100 legacy devices, you plan to create a new device enrollment that will use symmetric key attestation. The solution must minimize administrative effort.

What should you use to derive the device key?

  • A. the subscription ID
  • B. the IoT hub name
  • C. the group master key
  • D. the primary key of the DPS shared access policy
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by trahd at April 24, 2023, 8:05 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
trahd
2 years, 2 months ago
The multiple-choice options in the question are confusing. Also, the question says "what should you do to derive the device key?". Better wording would be, "what should you do to derive the device key for each device?". I will answer it in real world terms: Since we are going for symmetric key attestation and minimizing administrative effort, it's best to use a symmetric key enrollment group. In that case, for each device, "the derived device key is a hash of the device's registration ID and is computed using the symmetric key of the enrollment group." Reference: https://learn.microsoft.com/en-gb/azure/iot-dps/concepts-symmetric-key-attestation?tabs=windows#group-enrollments
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel