Crucial Exams

Microsoft Azure Administrator Associate AZ-104 Practice Question

You are an Azure administrator for a company that requires all data stored in Azure Storage Accounts to be encrypted by customer-managed keys (CMKs) stored in Azure Key Vault. The company policy also mandates that the key be rotated every 90 days. You need to configure a new Storage Account to meet these requirements. Which of the following steps should you perform?

  • Enable Infrastructure Encryption for the Storage Account and select the customer-managed key from Key Vault

  • Create a Key Vault, generate a key, and set the Storage Account to use service-managed keys in the Key Vault

  • Disable encryption on the Storage Account and configure the application to encrypt data before storing it

  • Set the default encryption key to a customer-managed key in Key Vault and configure a key-rotation policy

Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot