ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 7 question 5 discussion

Actual exam question from Microsoft's AZ-500
Question #: 5
Topic #: 7
[All AZ-500 Questions]

SIMULATION
-

You need to ensure that the rg1lod28681041n1 Azure Storage account is encrypted by using a key stored in the KeyVault28681041 Azure key vault.

To complete this task, sign in to the Azure portal.

Show Suggested Answer Hide Answer
Suggested Answer:
by epomatti at Jan. 4, 2024, 6:11 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
epomatti
Highly Voted 1 year, 1 month ago
The procedure is correct, but it is outdated and is lacking some details. 1. First of all, the user you're connect with must have Key Vault Crypto Officer to create a key. You'll need to grant that yourself if that is not provided out-of-the-box by the lab. 2. You can use the System-Assigned identity of the Storage as well. It does not have to be User-Assigned only anymore. 3. The permission granted to the storage identity should be Key Vault Crypto Service Encryption User, that is required for the wrap/unwrap permissions.
upvoted 5 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel