ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-304 All Questions

View all questions & answers for the AZ-304 exam
Go to Exam

Exam AZ-304 topic 2 question 44 discussion

Actual exam question from Microsoft's AZ-304
Question #: 44
Topic #: 2
[All AZ-304 Questions]

HOTSPOT -
Your company has 20 web APIs that were developed in-house.
The company is developing 10 web apps that will use the web APIs. The web apps and the APIs are registered in the company's Azure Active Directory (Azure
AD) tenant. The web APIs are published by using Azure API Management.
You need to recommend a solution to block unauthorized requests originating from the web apps from reaching the web APIs. The solution must meet the following requirements:
✑ Use Azure AD-generated claims.
✑ Minimize configuration and management effort.
What should you include in the recommendation? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
by Unofficial at March 12, 2021, 11:41 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Unofficial
Highly Voted 4 years, 3 months ago
Permissions are granted by AD. First answer should be Azure AD
upvoted 84 times
...
glam
Highly Voted 4 years, 3 months ago
Box1: Azure AD Box2: API Management
upvoted 57 times
...
ShivaUdari
Most Recent 1 year, 9 months ago
In 305 it's AD APIM
upvoted 1 times
...
cwilson91
3 years, 1 month ago
On AZ-305 exam - 5.7.22
upvoted 9 times
...
plmmsg
3 years, 3 months ago
Box1-Azure AD Box2-API Management
upvoted 2 times
...
us3r
3 years, 5 months ago
1) AAD 2) APIM
upvoted 2 times
...
Ataimo007
3 years, 8 months ago
Azure AD APIM I have implemented this architecture countless of times.
upvoted 12 times
...
syu31svc
3 years, 8 months ago
"Use Azure AD-generated claims" -> grant permissions using Azure AD https://docs.microsoft.com/en-us/azure/api-management/api-management-access-restriction-policies The validate-jwt policy enforces existence and validity of a JSON web token (JWT) extracted from either a specified HTTP Header or a specified query parameter. JWT is from API Management
upvoted 2 times
...
nkv
3 years, 9 months ago
I passed on 20-sep-21, I choose below one, Box1: Azure AD Box2: API Management
upvoted 7 times
...
souvik123
3 years, 9 months ago
Box1-Azure AD Box2-API Management
upvoted 2 times
...
DragonsGav
4 years ago
Azure AD [https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad] API Management
upvoted 3 times
...
SnakePlissken
4 years ago
Steps to take: 1 - In Azure AD, register an application (backend-app) to represent the API. 2 - In Azure AD, register another application (client-app) to represent a client application that needs to call the API. 3 - In Azure AD, grant permissions to allow the client-app to call the backend-app. 4 - In APIM, configure the Developer Console to call the API using OAuth 2.0 user authorization. 5 - In APIM, add the validate-jwt policy to validate the OAuth token for every incoming request. A. Grant permissions by using: Azure AD (Step 3) B. Configure JWT validation policy by using: Azure APIM (Step 5) https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad
upvoted 26 times
...
Prince2690
4 years ago
For pemissions, it should be done by Azure AD. https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-protect-backend-with-aad. 1. Azure AD 2. API Management
upvoted 2 times
...
Prince2690
4 years, 1 month ago
Box1-Azure AD Box2-API Management
upvoted 2 times
...
ashishg2105
4 years, 1 month ago
First Box incorrect. Answer is Azure AD
upvoted 3 times
...
claudio82
4 years, 1 month ago
I recently work with JWT and and active directory, The answer definitively is: AD API Managment
upvoted 5 times
...
aspirin
4 years, 2 months ago
Azure AD Azure Api Management
upvoted 4 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel