ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-204 All Questions

View all questions & answers for the AZ-204 exam
Go to Exam

Exam AZ-204 topic 4 question 44 discussion

Actual exam question from Microsoft's AZ-204
Question #: 44
Topic #: 4
[All AZ-204 Questions]

You manage a data processing application that receives requests from an Azure Storage queue.
You need to manage access to the queue. You have the following requirements:
✑ Provide other applications access to the Azure queue.
✑ Ensure that you can revoke access to the queue without having to regenerate the storage account keys.
✑ Specify access at the queue level and not at the storage account level.
Which type of shared access signature (SAS) should you use?

  • A. Service SAS with a stored access policy
  • B. Account SAS
  • C. User Delegation SAS
  • D. Service SAS with ad hoc SAS
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by sghaha at April 29, 2022, 6:26 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sghaha
Highly Voted 3 years, 1 month ago
Argee A
upvoted 18 times
...
gmishra88
Highly Voted 2 years, 8 months ago
User delegation SAS is only for blob storage? These random restrictions that microsoft creates just makes me so happy. It is a maze of that works with this but not if that and only if those cases. Why do they expect human beings to remember these unfortunate mistakes Microsoft makes
upvoted 16 times
overhill
7 months, 2 weeks ago
LOOOL you are right, that's what we have.
upvoted 2 times
...
...
Vichu_1607
Most Recent 7 months, 3 weeks ago
Selected Answer: A
Service SAS with Stored Access Policy: Provides fine-grained control over access to the Azure queue, allows revocation without regenerating storage account keys, and specifies access at the queue level.
upvoted 1 times
...
isabelisabelisabel
1 year, 7 months ago
Selected Answer: A
A must be correct
upvoted 1 times
...
rolling_potato_
2 years, 5 months ago
Selected Answer: A
Was on my exam today (03-01-2023)
upvoted 5 times
...
rotimislaw
2 years, 5 months ago
Why D. Service SAS with ad hoc SAS is incorrect?
upvoted 1 times
tzuyichao
2 years, 3 months ago
“Specify access at the queue level and not at the storage account level.”
upvoted 1 times
surprise0011
2 years, 2 months ago
there is not a valid explanation. Question says: Service SAS with ad hoc SAS So it is at service level not account level It is not a valid answer because ad-hoc signature cannot be invalidated. With access policy you can change access policy
upvoted 3 times
...
...
...
OPT_001122
2 years, 7 months ago
Selected Answer: A
A - corrct
upvoted 2 times
...
adrian_g
2 years, 8 months ago
I would go with B. A stored access policy is defined on a resource container. "An account SAS delegates access to resources in one or more of the storage services. All of the operations available via a service or user delegation SAS are also available via an account SAS." "Service SAS with stored access policy. A stored access policy is defined on a resource container, which can be a blob container, table, queue, or file share. " from: https://learn.microsoft.com/en-us/azure/storage/common/storage-sas-overview
upvoted 1 times
...
ArturKon
2 years, 9 months ago
Selected Answer: A
Looks like queues can only have SAS described in A.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel