You have an Azure DevOps organization named Contoso that contains a project named Project1. You provision an Azure key vault named Keyvault1. You need to reference Keyvault1 secrets in a build pipeline of Project1. What should you do first?
Agree, you need to create a variable group in Project1 -> Pipelines -> Library -> Click + Variable group -> Enable the "Link secrets from an Azure key vault as variables"
C - is the right one
https://docs.microsoft.com/en-us/azure/devops/pipelines/library/variable-groups?view=azure-devops&tabs=yaml#link-secrets-from-an-azure-key-vault
Variable groups are specifically designed to store and manage sensitive information like Key Vault secrets within Azure DevOps. They offer several advantages:
Centralized management: You can store and manage all your secrets in one place, making them easy to access and update across different pipelines within the project.
Security: Variable groups offer security features like access control, which allows you to control who can access and modify the stored secrets.
Integration with pipelines: You can easily reference secrets stored in variable groups within your build pipelines using dedicated tasks.
in the question says you provision an azure key vault and it means all needed configurations were applied to it.
so according with this lab the most accurate answer is C. Create a variable group in Project1
https://microsoftlearning.github.io/AZ400-DesigningandImplementingMicrosoftDevOpsSolutions/Instructions/Labs/AZ400_M05_L10_Integrating_Azure_Key_Vault_with_Azure_DevOps.html
C. Create a variable group in Project1.
To reference Keyvault1 secrets in a build pipeline, you need to create a variablegroup.
Azure DevOps variable groups can link to Azure Key Vault.
C is correct answer. Why D is not correct? To access AKV from build pipeline, we have to define access policy at Azure Key Vault level. D is saying configure security policy of Contoso project which is not correct.
Answer is C
https://docs.microsoft.com/en-us/azure/devops/pipelines/library/variable-groups?view=azure-devops&tabs=yaml
"Variable groups store values and secrets that you might want to be passed into a YAML pipeline or make available across multiple pipelines. You can share and use variable groups in multiple pipelines in the same project."
"Link an existing Azure key vault to a variable group and map selective vault secrets to the variable group."
This section is not available anymore. Please use the main Exam Page.AZ-400 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Hooters
Highly Voted 4 years, 7 months agoTyler2023
1 year, 9 months agoyhredil
Highly Voted 4 years, 6 months agoGPRai
Most Recent 11 months, 2 weeks agode89f6b
1 year agoFeriAZ
1 year, 3 months agoozbonny
1 year, 3 months agovsvaid
1 year, 5 months agorenzoku
1 year, 10 months ago318touring
2 years, 1 month agomohiniu
2 years, 3 months agosurensaluka
2 years, 4 months agobellorg
2 years, 4 months agoRachid
2 years, 6 months agoRachid
2 years, 6 months agojoshfry
2 years, 5 months agomeoukg
2 years, 7 months agoDParekh
2 years, 8 months agosyu31svc
2 years, 10 months ago