Microsoft Azure Administrator Associate AZ-104 Practice Question
You are an Azure Administrator responsible for securing an Azure storage account that is accessed by multiple applications. You want to minimize the risk associated with storage account key exposure while allowing applications to access the storage resources. What should you do to achieve this?
Disable one of the storage account keys to limit access to the storage account.
Store the storage account keys in Azure Key Vault and configure applications to retrieve the keys from Key Vault.
Use Shared Access Signatures (SAS) for applications to access the storage account instead of using the account keys.
Regenerate the storage account keys every week and distribute the new keys to applications.
Using Shared Access Signatures (SAS) allows you to grant limited and specific access to storage account resources without exposing the account keys. SAS provides fine-grained control over permissions and duration of access, reducing the risk associated with key exposure and following security best practices. Storing account keys in Azure Key Vault and retrieving them in applications still involves using the account keys directly, which can increase risk if an application is compromised. Regularly regenerating keys and distributing them to applications can cause disruptions and does not eliminate the risk of key exposure. Disabling one of the keys reduces redundancy and can make key rotation difficult without addressing the underlying issue of key exposure.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Shared Access Signatures (SAS) in Azure?
Open an interactive chat with Bash
Can SAS tokens be used with specific permissions and time limits?
Open an interactive chat with Bash
What is the difference between using SAS and storing keys in Azure Key Vault?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Implement and manage storage
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .