Microsoft Azure Administrator Associate AZ-104 Practice Question
An organization needs to have full control over the encryption keys used to protect their data stored in an Azure Storage account. They decide to use their own keys instead of the default keys provided by Azure. Which action should the administrator perform to meet this requirement?
Implement client-side encryption using Azure Storage SDK
Configure the storage account to use customer-managed keys stored in Azure Key Vault
Enable Azure Disk Encryption on the storage account
Enable server-side encryption with Microsoft-managed keys
To have full control over the encryption keys for data at rest in Azure Storage, the administrator should configure the storage account to use customer-managed keys stored in Azure Key Vault. This approach allows the organization to manage key creation, rotation, and revocation, providing greater control over access to their data. Enabling Azure Disk Encryption is applicable to virtual machine disks, not storage accounts. Implementing client-side encryption requires additional application code and management overhead, and it does not leverage Azure's server-side encryption capabilities. Enabling server-side encryption with Microsoft-managed keys uses the default keys managed by Azure, which does not satisfy the requirement for the organization to use their own keys.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Azure Key Vault and how does it help manage customer-managed keys?
Open an interactive chat with Bash
How is customer-managed encryption different from Microsoft-managed encryption in Azure?
Open an interactive chat with Bash
How does server-side encryption work with customer-managed keys in Azure Storage?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .