Crucial Exams

Microsoft Azure Developer Associate AZ-204 Practice Question

Your company exposes several internal APIs through an Azure API Management (APIM) instance named ContosoApi. An Orders API must be callable from the on-premises network (CIDR 10.0.0.0/16) without using an Ocp-Apim-Subscription-Key header, but external callers must still provide a valid subscription key. You need to configure APIM to meet these requirements while following Microsoft recommended practices and keeping management overhead low. What should you do?

  • Enable OAuth 2.0 user authorization and configure a delegation endpoint that issues special tokens to internal callers so that APIM ignores missing subscription keys.

  • Place the Orders API in two products: an Internal product that has Require subscription disabled and is protected by an ip-filter policy allowing 10.0.0.0/16, and a Public product that keeps Require subscription enabled for all other callers.

  • Add an inbound policy to the Orders API that allows traffic from 10.0.0.0/16 and, for other addresses, checks for the Ocp-Apim-Subscription-Key header.

  • Disable subscription key validation at the APIM instance level and use an Azure Front Door WAF rule to require the key except for 10.0.0.0/16.

Microsoft Azure Developer Associate AZ-204
Connect to and consume Azure services and third-party services
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot