Exam AI-100 topic 1 question 18 discussion

Answer is BC - but the link reference should be this : https://docs.microsoft.com/en-us/azure/key-vault/key-vault-ovw-soft-delete

Soft-delete behavior With this feature, the DELETE operation on a key vault or key vault object is a soft-delete, effectively holding the resources for a given retention period (90 days), while giving the appearance that the object is deleted. The service further provides a mechanism for recovering the deleted object, essentially undoing the deletion. Soft-delete is an optional Key Vault behavior and is not enabled by default in this release. It can be turned on via CLI or Powershell. Purge protection When purge protection is on, a vault or an object in deleted state cannot be purged until the retention period of 90 days has passed. These vaults and objects can still be recovered, assuring customers that the retention policy will be followed. Purge protection is an optional Key Vault behavior and is not enabled by default. It can be turned on via CLI or Powershell.

two features that should be configured to ensure that deleted keys are retained in Azure Key Vault for 90 days are B. Soft delete and C. Purge protection.

Soft Delete is correct answer “Soft delete” is a Key Vault feature that may be enabled on a vault. When this is true, if a Key Vault is deleted, it is recoverable for 90 days. It disappears from the Azure portal and it looks like the Key Vault has been completely deleted, like any other resource or service in Azure. This isn’t the case, however. It is held by Azure for 90 days and can be restored for any reason. Because of this precaution, a new Key Vault with the same name cannot be added to the Azure subscription until the “soft deleted” vault is truly deleted.

Can it be The expiration date on the keys and The activation date on the keys.