Crucial Exams

Microsoft Azure Developer Associate AZ-204 Practice Question

You are building an Azure Function that runs on a timer trigger and produces a weekly CSV list of every guest user in the Microsoft Entra tenant. The function executes without any interactive user or front-end and must access Microsoft Graph with the least possible privileges to read the entire user collection. How should you configure authentication and authorization for the function?

  • Grant the delegated permission User.ReadWrite.All and have the function acquire tokens through the on-behalf-of flow when it starts.

  • Grant the application permission Directory.Read.All and acquire tokens by using the authorization code flow during the function's startup.

  • Register an app for the function, grant it the application permission User.Read.All, administer tenant consent, and acquire tokens with the client-credentials flow.

  • Grant the delegated permission User.Read to the app and retrieve tokens by using the authorization code flow with an Azure managed identity.

Microsoft Azure Developer Associate AZ-204
Implement Azure security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot