ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 4 question 3 discussion

Actual exam question from Microsoft's AZ-500
Question #: 3
Topic #: 4
[All AZ-500 Questions]

You have an Azure Storage account named storage1 that has a container named container1.
You need to prevent the blobs in container1 from being modified.
What should you do?

  • A. From container1, change the access level.
  • B. From container1, add an access policy.
  • C. From container1, modify the Access Control (IAM) settings.
  • D. From storage1, enable soft delete for blobs.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by ddmoto at July 18, 2020, 12:08 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
romanaa
Highly Voted 4 years, 8 months ago
so many repetitions
upvoted 21 times
kiketxu
4 years, 7 months ago
agree!
upvoted 6 times
...
...
kumax
Highly Voted 3 years, 10 months ago
On exam, May 2021.
upvoted 11 times
...
pentium75
Most Recent 9 months ago
Selected Answer: B
Tricky because "Access policy" usually refers to the stored access policies for SAS. But under the same item there is also the "immutable blob storage" policy which is what we need.
upvoted 1 times
...
majstor86
2 years, 2 months ago
Selected Answer: B
B. From container1, add an access policy.
upvoted 5 times
...
ligu
2 years, 2 months ago
The answer is correct
upvoted 2 times
...
Irishtk
2 years, 11 months ago
Correct. Configure immutable storage policy on container. https://docs.microsoft.com/en-us/azure/storage/blobs/immutable-policy-configure-container-scope?tabs=azure-portal
upvoted 5 times
pentium75
9 months ago
Yes, but "Configure immutable storage policy" is something else than "add an access policy". The latter refers to stored access policies for SAS, and ADDING one will not change anything.
upvoted 1 times
...
...
Eltooth
3 years, 1 month ago
Selected Answer: B
B is correct answer.
upvoted 5 times
...
Patchfox
3 years, 4 months ago
I think B fits best but it should be called sth. like immutable - time based retention. The access policy is only for sas tokens. Answer A makes the container in any kind public available, we don't want that. C needs specific principles to assign a role ( like blob data reader) and D bringt the the container in a delete process.
upvoted 3 times
...
arytech
3 years, 10 months ago
Why not A? it meets the goal as described in https://docs.microsoft.com/en-us/azure/storage/blobs/anonymous-read-access-configure?tabs=portal. In the other hand, Access policy sounds tricky as an answer althoug immutable storage is a kind of policy https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-immutable-storage. What do you think?
upvoted 2 times
smilinghacker
3 years, 3 months ago
Because A is not right here.
upvoted 2 times
...
...
mayenite
4 years, 3 months ago
Given answer is correct
upvoted 7 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago