Practice Test 1 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
A company has an Azure subscription and an Azure tenant. The company is planning to deploy a web application that will work with a CosmosDB account. The CosmosDB account will consist of a database that will be the back-end tier for the application. The Web application will be deployed using the Azure Web App service.
Users will need to authenticate using their Azure AD account and access the CosmosDB account by using resource tokens.
Which of the following task would you implement for the web application for authentication purposes?
A. Authenticate Azure AD users and generate resource tokens.
B. Authenticate Azure AD users and relay resource tokens.
C. Create database users and generate resource tokens.
D. Create database users and relay resource tokens.
Answer – B
Below is a design pattern provided in the Microsoft documentation. An application can request tokens when interacting with a CosmosDB account. Here the authentication with the identity provider is the responsibility of the application.
Option A is incorrect since the application would not generate the resource token.
Options C and D are incorrect since database users need to be created in the CosmosDB account.
For more information on securing access to data in CosmosDB, one can visit the below URL-
https://docs.microsoft.com/en-us/azure/cosmos-db/secure-access-to-data
Comments are closed, but trackbacks and pingbacks are open.