Crucial Exams

Microsoft Azure Developer Associate AZ-204 Practice Question

An ASP.NET Core web API is registered in Microsoft Entra ID as a single-tenant application. You exposed a scope named "Tasks.Read" and configured the API to accept only tokens whose aud claim matches its application ID URI. A React single-page application (SPA) acquires a token for the User.Read scope and receives HTTP 401 when it calls the API. Which change will resolve the authorization failure?

  • Disable audience (aud) validation in JwtBearerOptions in the API's startup code.

  • In the SPA, request an access token for the scope api:///Tasks.Read instead of User.Read.

  • Add the API's application ID URI to the list of redirect URIs in the SPA's app registration.

  • Enable the implicit grant flow for access tokens in the API's app registration.

Microsoft Azure Developer Associate AZ-204
Implement Azure security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot