ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 3 question 10 discussion

Actual exam question from Microsoft's AZ-700
Question #: 10
Topic #: 3
[All AZ-700 Questions]

You have an Azure application gateway for a web app named App1. The application gateway allows end-to-end encryption.
You configure the listener for HTTPS by uploading an enterprise-signed certificate.
You need to ensure that the application gateway can provide end-to-end encryption for App1.
What should you do?

  • A. Increase the Unhealthy threshold setting in the custom probe.
  • B. Enable the SSL profile to the listener.
  • C. Set Listener type to Multi site.
  • D. Upload the public key certificate to the HTTP settings.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by WorkHardBeProud at Oct. 21, 2021, 6:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Eitant
Highly Voted 2 years, 11 months ago
Selected Answer: D
The certificate is an enterprise certificate and not a public certificate so you must upload the root certificate to the Application Gateway. There is no typo, it's HTTP settings. https://docs.microsoft.com/en-us/azure/application-gateway/self-signed-certificates#upload-the-root-certificate-to-application-gateways-http-settings
upvoted 30 times
daemon101
1 year, 5 months ago
I'm not sure if this question still appears on the exam this year (2023) because it's now called Backend settings.
upvoted 1 times
Lazylinux
1 year, 5 months ago
NO you are WRONG!! it is still called HTTPS Settings, you are mixing https settings with backend settings both are different
upvoted 1 times
windowsmodulesinstallerworker
1 month, 3 weeks ago
please go to the portal and check for yourself, its backend settings now
upvoted 1 times
...
...
...
derrrp
2 years, 5 months ago
For anyone dong any last minute cramming for this exam, you've likely encountered this question several times now. I immediately remember this top-voted comment above from Eitant. (Thanks dude). Pointing out that it's "HTTP settings" not being a typo - even though we're actually dealing with HTTPS helps me to remember the answer. This is for the Enterprise generated cert whereas the other version of this question uses a legitimate Certificate Authority (CA) Good luck, ya'll.
upvoted 22 times
...
...
teamaws
Highly Voted 3 years, 1 month ago
Think there's a typo in answer D, shoud be HTTPS settings. Under HTTPS Settings: Choose a certificate - Select Upload a certificate. https://docs.microsoft.com/en-us/azure/application-gateway/create-ssl-portal#configuration-tab
upvoted 12 times
...
jayek
Most Recent 9 months, 2 weeks ago
https://learn.microsoft.com/en-us/azure/application-gateway/end-to-end-ssl-portal#:~:text=Add%20authentication/root%20certificates%20of%20backend%20servers
upvoted 1 times
...
Lazylinux
1 year, 5 months ago
Selected Answer: D
There are the following settings for Https settings and NOT http as it is none secure port 80 hence dont need cert - so for https port 443 it is as per below Https Settings Choose a certificate (you can chose upload file or key vault if set up and preferably use key vault to manage certs) Upload a certificate Choose a certificate from Key Vault Cert name (here you can call it anything you like even Bill Gates!!) PFX certificate file - if you are uploading and NOT using key vault Password - is password for the PFX file
upvoted 1 times
...
Rajan395
1 year, 11 months ago
correct answer
upvoted 1 times
...
AdityaGupta
2 years, 3 months ago
Selected Answer: D
You need to upload .pfx file in Http Setting.
upvoted 1 times
...
naidu
2 years, 3 months ago
D is the right answer
upvoted 1 times
...
kogunribido
2 years, 6 months ago
Appeared on exam 6/27/2022
upvoted 2 times
...
Edward1
2 years, 8 months ago
Selected Answer: D
The Answer is correct. To create a new application gateway with end-to-end TLS encryption, you'll need to first enable TLS termination while creating a new application gateway. This action enables TLS encryption for communication between the client and application gateway. Then, you'll need to put on the Safe Recipients list the certificates for the back-end servers in the HTTP settings. This configuration enables TLS encryption for communication between the application gateway and the back-end servers. That accomplishes end-to-end TLS encryption.
upvoted 4 times
...
d0bermannn
2 years, 10 months ago
Selected Answer: D
D. Upload the public key certificate to the HTTP settings
upvoted 1 times
...
rockethack
2 years, 10 months ago
This question was on the exam on 18th Feb 2022.
upvoted 1 times
...
viva6516
2 years, 10 months ago
To ensure that the application gateway provide end-to-end encryption, SSL must be enabled Answer - B
upvoted 2 times
...
KranthiChaitanya
2 years, 11 months ago
Came on exam 28/Jan/22
upvoted 1 times
...
Pravda
2 years, 11 months ago
Not on exam 1/6/2022
upvoted 2 times
...
[Removed]
3 years ago
little confused, documentation says first enable TLS and then upload cert to listener. Is option B incorrect because it says enable SSL instead of TLS?
upvoted 2 times
...
Pravda
3 years ago
Web page does say to use HTTPS https://docs.microsoft.com/en-us/azure/application-gateway/self-signed-certificates#upload-the-root-certificate-to-application-gateways-http-settings
upvoted 2 times
...
prepper666
3 years, 1 month ago
Correct as described here: https://docs.microsoft.com/en-us/azure/application-gateway/self-signed-certificates. There is no need to upload if using a well-known certificate (public)
upvoted 5 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel