ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MS-900 All Questions

View all questions & answers for the MS-900 exam
Go to Exam

Exam MS-900 topic 1 question 416 discussion

Actual exam question from Microsoft's MS-900
Question #: 416
Topic #: 1
[All MS-900 Questions]

DRAG DROP
-

A company deploys an Azure App Service named App1.

The company has the following requirements for apps in App1:

• Apps must use the same identity to access Azure Storage.
• Users outside the company must be able to access the apps by using their social media identity.

You need to identify the Azure Active Directory (Azure AD) identify solutions.

What should you use? To answer, drag the appropriate identity solution to the correct requirement. Each identity solution may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by momowagdy at Sept. 7, 2023, 7:12 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pand2
Highly Voted 1 year, 5 months ago
First one is user-assigned System-assigned cannot be used for many apps https://learn.microsoft.com/en-us/azure/app-service/overview-managed-identity?tabs=portal%2Chttp
upvoted 10 times
...
francoisurban
Most Recent 4 months, 4 weeks ago
The first one is correct using system assigned managed identity to access storage from a web application. https://learn.microsoft.com/en-us/entra/identity-platform/multi-service-web-app-access-storage
upvoted 1 times
...
AvidehParisa
9 months, 4 weeks ago
first on is System assigned Steps to Implement Managed Identities: Enable Managed Identity on App1: Go to the Azure portal. Navigate to your App Service (App1). Under the “Settings” section, select “Identity”. Turn on the “System assigned” managed identity. This will create an identity for your app in Azure AD. Assign Roles to the Managed Identity: Go to the Azure Storage account you want App1 to access. Under the “Access control (IAM)” section, add a role assignment. Assign the appropriate role (e.g., “Storage Blob Data Contributor”) to the managed identity of App1. This grants the necessary permissions to access the storage resources. Access Azure Storage from App1: In your application code, use the Azure SDKs to authenticate using the managed identity. The SDK will handle the authentication process and obtain the necessary tokens to access Azure Storage.
upvoted 3 times
...
Lotro
10 months, 3 weeks ago
Second one B2C is correct: Azure Active Directory B2C provides business-to-customer identity as a service. Your customers can use their preferred social, enterprise, or local account identities to get single sign-on access to your applications and APIs. https://learn.microsoft.com/en-us/azure/active-directory-b2c/overview
upvoted 2 times
...
momowagdy
1 year, 11 months ago
second one is correct. first one not sure about it.
upvoted 1 times
...
momowagdy
1 year, 11 months ago
https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&cad=rja&uact=8&ved=2ahUKEwiVvZ-JmpmBAxUIhv0HHV-3BYYQFnoECA0QAw&url=https%3A%2F%2Flearn.microsoft.com%2Fen-us%2Fazure%2Factive-directory-b2c%2F%23%3A~%3Atext%3DAzure%2520Active%2520Directory%2520B2C%2520(Azure%2Con%2520access%2520to%2520your%2520applications.&usg=AOvVaw2wKssjEiVwqoXPTG5bZXH6&opi=89978449
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel