ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-204 All Questions

View all questions & answers for the AZ-204 exam
Go to Exam

Exam AZ-204 topic 4 question 5 discussion

Actual exam question from Microsoft's AZ-204
Question #: 5
Topic #: 4
[All AZ-204 Questions]

DRAG DROP -
You are developing an application to securely transfer data between on-premises file systems and Azure Blob storage. The application stores keys, secrets, and certificates in Azure Key Vault. The application uses the Azure Key Vault APIs.
The application must allow recovery of an accidental deletion of the key vault or key vault objects. Key vault objects must be retained for 90 days after deletion.
You need to protect the key vault and key vault objects.
Which Azure Key Vault feature should you use? To answer, drag the appropriate features to the correct actions. Each feature may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Soft delete -
When soft-delete is enabled, resources marked as deleted resources are retained for a specified period (90 days by default). The service further provides a mechanism for recovering the deleted object, essentially undoing the deletion.

Box 2: Purge protection -
Purge protection is an optional Key Vault behavior and is not enabled by default. Purge protection can only be enabled once soft-delete is enabled.
When purge protection is on, a vault or an object in the deleted state cannot be purged until the retention period has passed. Soft-deleted vaults and objects can still be recovered, ensuring that the retention policy will be followed.
Reference:
https://docs.microsoft.com/en-us/azure/key-vault/general/soft-delete-overview
by andsol at March 15, 2021, 8:42 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
andsol
Highly Voted 4 years, 1 month ago
The answer is correct.
upvoted 64 times
...
mlantonis
Highly Voted 3 years, 11 months ago
Box 1: Soft delete When soft-delete is enabled, resources marked as deleted resources are retained for a specified period (90 days by default). The service further provides a mechanism for recovering the deleted object, essentially undoing the deletion. This can be achieved with the help of the soft-delete feature of the key vault. Box 2: Purge protection Purge protection is an optional Key Vault behavior and is not enabled by default. Purge protection can only be enabled once soft-delete is enabled. When purge protection is on, a vault or an object in the deleted state cannot be purged until the retention period has passed. Soft-deleted vaults and objects can still be recovered, ensuring that the retention policy will be followed. This can be achieved with the help of the purge protection feature of the key vault. Reference: https://docs.microsoft.com/en-us/azure/key-vault/general/soft-delete-overview
upvoted 47 times
minh1302
2 years, 9 months ago
Thank mlantonis, learn from you a lot ( AZ-104, AZ-204)
upvoted 5 times
...
...
Vichu_1607
Most Recent 6 months, 4 weeks ago
The feature you should use to enable retention period and accidental deletion is Soft Delete. Soft Delete, when enabled, allows recovery of the deleted key vault or key vault objects within a specified retention period (90 days in this case). This feature is designed to protect Key Vault from accidental deletion of keys, secrets, and certificates. The feature you should use to enforce retention period and accidental deletion is Purge Protection. Purge Protection, when enabled, ensures that key vault objects cannot be permanently deleted until the retention period has passed. This feature provides an additional layer of protection to prevent the permanent deletion of key vault objects during the retention period.
upvoted 1 times
...
leviatas
1 year, 7 months ago
Got this question in exam. 2023.09.25
upvoted 1 times
...
applepie
1 year, 9 months ago
got this question today, go with the provided answer - 7/30/2023, score 895/1000
upvoted 3 times
...
NightshadeRC
1 year, 9 months ago
Had this question in today's exam: 2023-07-26
upvoted 2 times
...
murat12345
1 year, 9 months ago
If Box 1 is about having a retention period (meaning: you cant hard delete before the 90 days pass), what additional advantage does box 2 / purge protection give?
upvoted 1 times
basquiat
1 year, 8 months ago
The first is related to key vault secrets and the second to the keyvault itself, from what I understood.
upvoted 1 times
...
...
Juhi_Az204
2 years, 1 month ago
Got this on 26March,2023
upvoted 1 times
...
Esward
2 years, 3 months ago
Given answers are correct https://learn.microsoft.com/en-us/azure/key-vault/general/soft-delete-overview
upvoted 1 times
...
Lucifer14
2 years, 4 months ago
In 28-12-2022 exam
upvoted 1 times
...
xRiot007
2 years, 10 months ago
You use Soft delete to *enable* and Purge protection to *enforce*
upvoted 3 times
...
Eltooth
2 years, 10 months ago
Soft delete Purge protection
upvoted 1 times
...
Rini100
3 years ago
Got this on 20 Apr 2022
upvoted 3 times
...
meoukg
3 years, 1 month ago
ot it on 03/2022, I chose Soft delete => Purge protection
upvoted 4 times
...
francis6170
3 years, 11 months ago
got this in the exam :)
upvoted 7 times
...
UnknowMan
3 years, 11 months ago
The answer is correct.
upvoted 2 times
...
glam
3 years, 11 months ago
correct
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago