Microsoft Azure Administrator Associate AZ-104 Practice Question
An administrator needs to grant temporary read access to blobs in a container to clients who cannot authenticate using the storage account's keys or existing authentication mechanisms. What should they configure to achieve this?
Using Shared Access Signatures (SAS) allows the administrator to grant temporary, limited access to resources in the storage account without sharing the account keys or requiring standard authentication. SAS tokens can specify permissions, such as read access, and set an expiration time, providing secure and granular access control. Stored access policies are used with SAS to manage constraints for one or more shared access signatures but don't grant access on their own. Distributing account keys is insecure and provides full access to the storage account. Role-Based Access Control (RBAC) requires clients to authenticate, which these clients cannot do.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Shared Access Signatures (SAS)?
Open an interactive chat with Bash
How do stored access policies work with SAS?
Open an interactive chat with Bash
What are the security risks of using account keys?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access