AZ-305 · Question 15 · Domain 1.4: Application Identities
A web application hosted on Azure App Service requires access to a third-party API. The API key must be stored securely and must not be visible in the application code or App Service configuration settings.
You decide to store the API key in Azure Key Vault.
Which TWO steps must you perform to allow the App Service to retrieve the API key securely without managing credentials? (Select TWO)
Answer options:
Enable a managed identity on the Azure App Service.
Store the Key Vault client secret in the App Service application settings.
Grant the managed identity 'Key Vault Secrets User' role (or access policy) on the Key Vault.
Configure a Private Endpoint for the Key Vault.
Register a new application in Microsoft Entra ID and generate a certificate.
55 questions · hints · full answers · grading
Expert