Microsoft Azure Fundamentals AZ-900 Practice Question
Your company needs to access Azure storage accounts securely from within their VNet, using private IP addresses assigned to the VNet. They want to ensure that the traffic between the VNet and the storage accounts remains entirely within the Azure network, without using public IP addresses. Which Azure feature should they implement to meet this requirement?
Create Private Endpoints for the storage accounts.
Implement Network Security Groups to restrict traffic.
Use a Public Load Balancer.
Configure Service Endpoints for the storage accounts.
They should create Private Endpoints for the storage accounts. Azure Private Endpoints assign a private IP address from your VNet to the Azure service, allowing resources within the VNet to access the service over a private link. This ensures that traffic remains within the Azure network and does not traverse the public internet.
Configuring Service Endpoints is incorrect because, while they extend your VNet's identity to the Azure service, the service is still accessed using its public IP address.
Using a Public Load Balancer or implementing Network Security Groups does not provide the required private connectivity to the storage accounts.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Azure Private Endpoints?
Open an interactive chat with Bash
How do Private Endpoints differ from Service Endpoints?
Open an interactive chat with Bash
What is a VNet in Azure, and why is it important for using Private Endpoints?
Open an interactive chat with Bash
Microsoft Azure Fundamentals AZ-900
Azure Architecture and Services
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access