HOTSPOT - You need to secure the Shipping Function app. How should you configure the app? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Hot Area:
Suggested Answer:
Scenario: Shipping Function app: Implement secure function endpoints by using app-level security and include Azure Active Directory (Azure AD).
Box 1: Function - Box 2: JSON based Token (JWT) Azure AD uses JSON based tokens (JWTs) that contain claims
Box 3: HTTP - How a web app delegates sign-in to Azure AD and obtains a token User authentication happens via the browser. The OpenID protocol uses standard HTTP protocol messages. Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-scenarios
The correct answer is:
Anonymous
JWT
HTTP
Scenario: Shipping Function app: Implement secure function endpoints by using app-level security and include Azure Active Directory (Azure AD).
1. Authorization Level must be anonymous to use function app level security methods.
2. User claims must be JWT tokens; API Key is not recommended due to security issues.
3. Function App is triggered from Logic App. So it must be http
https://docs.microsoft.com/en-us/azure/azure-functions/functions-bindings-http-webhook-trigger?tabs=csharp#secure-an-http-endpoint-in-production
AuthorizationLevel : Setting the Authorization level to "Anonymous" means that no authentication is required to access the Azure Function. This would not be secure, particularly for sensitive operations, as anyone who knows the URL can invoke the function, potentially leading to misuse or data breaches.
So correct answers are : Functions , JSON Web Token(JWT) and HTTP
Secure an HTTP endpoint in production
To fully secure your function endpoints in production, you should consider implementing one of the following function app-level security options. When using one of these function app-level security methods, you should set the HTTP-triggered function authorization level to anonymous. https://learn.microsoft.com/en-us/azure/azure-functions/functions-bindings-http-webhook-trigger?tabs=in-process%2Cfunctionsv2&pivots=programming-language-csharp#secure-an-http-endpoint-in-production Anonymous JWT and HTTP
the answer is correct, shipping function app is the one at the left.. it will need to access the 2 apis from the internal VM, not public accessing. API key is correct instead of anonymous.
Based on description it should be anonymous
https://learn.microsoft.com/en-us/azure/azure-functions/functions-bindings-http-webhook-trigger?tabs=in-process%2Cfunctionsv2&pivots=programming-language-csharp#secure-an-http-endpoint-in-production
If using AD is used then Function key should not be used and it should be set to anonymous. Could not find the link, but just think about it and try it
here is the link:
Anonymous is the only authorization level that doesn't require a key.
So :
function,
JWT
HTTP
is still valid .
https://learn.microsoft.com/en-us/azure/azure-functions/security-concepts?tabs=v4#function-access-keys
Functions lets you use keys to make it harder to access your HTTP function endpoints during development. Unless the HTTP access level on an HTTP triggered function is set to anonymous, requests must include an API access key in the request.
NO! its anonymous
"Implement secure function endpoints by using app-level security and include Azure Active Directory (Azure AD)." How can it be Function is AAD requires "Anonymous"?
My vote:
Anonymous
JWT
HTTP
in Korean
https://docs.microsoft.com/ko-kr/azure/active-directory/develop/authentication-scenarios
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.AZ-204 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
uffuchsi
Highly Voted 2 years, 2 months agoEltooth
Highly Voted 2 years, 10 months agoChristian_garcia_martin
Most Recent 9 months agoFeriAZ
1 year, 2 months agoadilkhan
2 years, 2 months agoRanzzzan
2 years, 3 months agoKnightie
2 years, 5 months agolombster
2 years, 5 months agoajayasa
2 years, 3 months agogmishra88
2 years, 6 months agocoffecold
2 years, 6 months agoadilkhan
2 years, 2 months agoqwerty112233
2 years, 7 months agosghaha
3 years ago