Crucial Exams

Microsoft Azure Developer Associate AZ-204 Practice Question

An Azure Function app needs to retrieve a database password that is stored as a secret in Azure Key Vault during execution. You must avoid storing any credentials in code or app settings and follow the principle of least privilege. What should you do to allow the function to access the secret?

  • Add the Key Vault access key to the Function app's application settings and read it at runtime.

  • Generate a user delegation SAS for the Key Vault and embed it in an environment variable.

  • Create a service principal, store its client secret in Azure App Configuration, and reference it from code.

  • Enable a system-assigned managed identity on the Function app and assign that identity the Key Vault Secrets User role on the vault.

Microsoft Azure Developer Associate AZ-204
Implement Azure security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot