ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AI-100 All Questions

View all questions & answers for the AI-100 exam
Go to Exam

Exam AI-100 topic 5 question 8 discussion

Actual exam question from Microsoft's AI-100
Question #: 8
Topic #: 5
[All AI-100 Questions]

You are developing a Microsoft Bot Framework application. The application consumes structured NoSQL data that must be stored in the cloud.
You implement Azure Blob storage for the application. You want access to the blob store to be controlled by using a role.
You implement Shared Access Signatures (SAS) on the storage account.
Does this action accomplish your objective?

  • A. Yes, it does
  • B. No, it does not
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
Shared access signatures (SAS) provide limited delegated access to resources in a storage account. Adding constraints on the time interval for which the signature is valid or on permissions it grants provides flexibility in managing access.
Use Azure Active Directory (Azure AD) instead.
Reference:
https://docs.microsoft.com/en-us/azure/storage/common/storage-auth
by Messatsu at July 22, 2021, 2:06 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rveney
2 years ago
A. Yes, it does. Implementing Shared Access Signatures (SAS) on the storage account can help accomplish your objective of controlling access to the blob store based on a role. By using SAS, you can generate a token that includes specific permissions and a limited validity period. This token can be issued to users or clients with the required role. The role determines the permissions they have on the blob store. The SAS token can be attached to a request made to the storage account, granting temporary access to perform specific operations, such as read or write, on the blob store. With SAS, you have fine-grained control over who can access the blob store and what operations they can perform. By generating SAS tokens with different permissions for different roles, you can enforce access control based on the desired roles within your application.
upvoted 1 times
...
claudiapatricia777
3 years, 7 months ago
For me is a NO because we can't store structured NoSQL data in a blob-storage, please be my guest to explain if that can be done, I didn't found that anywhere. https://docs.microsoft.com/en-us/azure/storage/common/storage-introduction
upvoted 1 times
...
Messatsu
3 years, 11 months ago
Even if there are contraints, I would vote for "Yes" because it allows to access to the blob storage : https://docs.microsoft.com/en-us/azure/storage/common/storage-sas-overview
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel