ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-500 All Questions

View all questions & answers for the AZ-500 exam
Go to Exam

Exam AZ-500 topic 12 question 1 discussion

Actual exam question from Microsoft's AZ-500
Question #: 1
Topic #: 12
[All AZ-500 Questions]

DRAG DROP -
You need to deploy AKS1 to meet the platform protection requirements.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: More than one order of answer choices is correct. You will receive credit for any of the correct orders you select.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Scenario: Azure AD users must be able to authenticate to AKS1 by using their Azure AD credentials.
Litware plans to deploy AKS1, which is a managed AKS (Azure Kubernetes Services) cluster.
Step 1: Create a server application
To provide Azure AD authentication for an AKS cluster, two Azure AD applications are created. The first application is a server component that provides user authentication.
Step 2: Create a client application
The second application is a client component that's used when you're prompted by the CLI for authentication. This client application uses the server application for the actual authentication of the credentials provided by the client.
Step 3: Deploy an AKS cluster.
Use the az group create command to create a resource group for the AKS cluster.
Use the az aks create command to deploy the AKS cluster.
Step 4: Create an RBAC binding.
Before you use an Azure Active Directory account with an AKS cluster, you must create role-binding or cluster role-binding. Roles define the permissions to grant, and bindings apply them to desired users. These assignments can be applied to a given namespace, or across the entire cluster.
Reference:
https://docs.microsoft.com/en-us/azure/aks/azure-ad-integration
by dadageer at March 13, 2021, 12:16 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dadageer
Highly Voted 4 years, 4 months ago
Correct answer https://docs.microsoft.com/en-us/azure/aks/azure-ad-integration-cli
upvoted 21 times
...
bmanu
Highly Voted 4 years, 2 months ago
seems like an outdated question "AKS has a new improved AKS-managed Azure AD experience that doesn't require you to manage server or client application. If you want to migrate follow the instructions here." https://docs.microsoft.com/en-us/azure/aks/azure-ad-integration-cli
upvoted 11 times
TheProfessor
1 year, 9 months ago
All Azure AD Integration (legacy) AKS clusters will be migrated to AKS-managed Azure AD automatically starting from December 1st, 2023. It's still valid until December 1st, 2023
upvoted 1 times
...
...
Viggy1212
Most Recent 9 months, 3 weeks ago
The AKS-managed Microsoft Entra integration simplifies the Microsoft Entra integration process. Previously, you were required to create a client and server app, and the Microsoft Entra tenant had to assign Directory Readers role permissions. Now, the AKS resource provider manages the client and server apps for you. Microsoft Entra authentication is provided to AKS clusters with OpenID Connect. OpenID Connect is an identity layer built on top of the OAuth 2.0 protocol. Now you need to run only this command, az aks update ** --enable-aad You have to follow the same even for legacy cluster.
upvoted 1 times
...
Strive_for_greatness_kc
1 year, 6 months ago
This is an outdated question, Admin can you delete it. Thanks
upvoted 2 times
...
ESAJRR
1 year, 10 months ago
Step 1: Create a server application Step 2: Create a client application Step 3: Deploy an AKS cluster. Step 4: Create an RBAC binding.
upvoted 2 times
...
majstor86
2 years, 4 months ago
Step 1: Create a server application Step 2: Create a client application Step 3: Deploy an AKS cluster. Step 4: Create an RBAC binding.
upvoted 6 times
...
MoFami
3 years ago
On exam 01 july 2022
upvoted 4 times
...
PBA1211
3 years, 5 months ago
My tricky part was that I choose the custom RBAC role, only the case say... Use the custom RBAC Role, so that means it is alreday there and we have to use this new role. ommggg read read read :-)
upvoted 1 times
...
zioggs
3 years, 8 months ago
Exam - 4/11/21
upvoted 2 times
...
kumax
4 years, 1 month ago
On exam, May 2021. This is a scenario that contains multiple (less than 5) questions.
upvoted 3 times
...
sureshatt
4 years, 3 months ago
Current AKS version has AAD integration out of the box, hence it is no longer required to configure the AAD server and client apps.
upvoted 7 times
kakakayayaya
3 years, 11 months ago
Yes. Actually it's in legacy mode, until February 29th 2024.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel