ExpertAZ-305 · Question 18 · Domain 1.4: Design Identities and Access for Applications
You are designing an application architecture where an Azure App Service web app needs to securely access an Azure SQL Database and an Azure Storage Account.
Security policies require that no credentials, connection strings, or secrets be stored in the application code or configuration files. The identity used for access must be automatically managed by Azure and tied to the lifecycle of the App Service.
Which identity solution should you recommend?
You are designing an application architecture where an Azure App Service web app needs to securely access an Azure SQL Database and an Azure Storage Account.
Security policies require that no credentials, connection strings, or secrets be stored in the application code or configuration files. The identity used for access must be automatically managed by Azure and tied to the lifecycle of the App Service.
Which identity solution should you recommend?
Answer options:
User-assigned Managed Identity
System-assigned Managed Identity
Service Principal with a client secret stored in Azure Key Vault
Azure AD B2C Application Registration
How to approach this question
Full Answer
Common mistakes
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 4
55 questions · hints · full answers · grading