Practice Test 1 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
Your company has an Azure Active Directory (Azure AD) tenant named whizlab.com. The company wants to deploy a service named “whizlabsrv” that would run on a virtual machine running Windows Server 2016. The service needs to authenticate to the tenant and access Microsoft Graph to read the directory data.
You need to delegate the minimum required permissions for the service.
Which of the following steps would you perform in Azure? Choose 3 answers from the options below.
A. Add a delegated permission.
B. Add an app registration.
C. Add an application permission.
D. Configure an Azure AD Application Proxy.
E. Grant Application Permissions.
Answer – B, C and E
First the application must be created/registered.
Option B: Create an app registration
Application permissions are used by apps that run without a signed-in user present.
Option C: Add an application permission
Grant permission to application
Option E: Grant permissions –
Otion A: Delegated permission –
Delegated permissions are used by apps that have a signed-in user present.
Option D: Application Proxy:
Azure Active Directory’s Application Proxy provides secure remote access to on-premises web applications.
First, you need to add an application registration. The Microsoft documentation mentions the following.
When it comes to types of permissions, the Microsoft documentation mentions that you have to use Application permissions for services.
And then, finally you grant the required permissions.
Since this is clear from the Microsoft documentation, all other options are incorrect.
For more information on Microsoft graph, permissions and consents, one can visit the below URL-
Comments are closed, but trackbacks and pingbacks are open.