CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Microsoft
  5. AZ-400

Free AZ-400 Exam Braindumps (page: 30)

Page 29 of 128
PDF with 556 Questions

You plan to provision a self-hosted Linux agent.
Which authentication mechanism should you use to register the self-hosted agent?

  1. personal access token (PAT)
  2. SSH key
  3. Alternate credentials
  4. certificate

Answer(s): A

Explanation:

Note: PAT Supported only on Azure Pipelines and TFS 2017 and newer. After you choose PAT, paste the PAT token you created into the command prompt window. Use a personal access token (PAT) if your Azure DevOps Server or TFS instance and the agent machine are not in a trusted domain. PAT authentication is handled by your Azure DevOps Server or TFS instance instead of the domain controller.


Reference:

https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/v2-linux



You are building a Microsoft ASP.NET application that requires authentication. You need to authenticate users by using Azure Active Directory (Azure AD).
What should you do first?

  1. Assign an enterprise application to users and groups
  2. Create an app registration in Azure AD
  3. Configure the application to use a SAML endpoint
  4. Create a new OAuth token from the application
  5. Create a membership database in an Azure SQL database

Answer(s): B

Explanation:

Register your application to use Azure Active Directory. Registering the application means that your developers can use Azure AD to authenticate users and request access to user resources such as email, calendar, and documents.


Reference:

https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/developer-guidance-for-integrating-applications



You have an Azure DevOps organization named Contoso.
You need to recommend an authentication mechanism that meets the following requirements:

Supports authentication from Git
Minimizes the need to provide credentials during authentication

What should you recommend?

  1. personal access tokens (PATs) in Azure DevOps
  2. Alternate credentials in Azure DevOps
  3. user accounts in Azure Active Directory (Azure AD)
  4. managed identities in Azure Active Directory (Azure AD)

Answer(s): A

Explanation:

Personal access tokens (PATs) give you access to Azure DevOps and Team Foundation Server (TFS), without using your username and password directly. These tokens have an expiration date from when they're created. You can restrict the scope of the data they can access. Use PATs to authenticate if you don't already have SSH keys set up on your system or if you need to restrict the permissions that are granted by the credential.

Incorrect Answers:

B: Azure DevOps no longer supports Alternate Credentials authentication since the beginning of March 2, 2020. If you're still using Alternate Credentials, we [Microsoft] strongly encourage you to switch to a more secure authentication method (for example, personal access tokens).


Reference:

https://docs.microsoft.com/en-us/azure/devops/repos/git/auth-overview



You have an application that consists of several Azure App Service web apps and Azure functions. You need to assess the security of the web apps and the functions.
Which Azure feature can you use to provide a recommendation for the security of the application?

  1. Security & Compliance in Azure Log Analytics
  2. Resource health in Azure Service Health
  3. Smart Detection in Azure Application Insights
  4. Compute & apps in Azure Security Center

Answer(s): D

Explanation:

Monitor compute and app services: Compute & apps include the App Services tab, which App services: list of your App service environments and current security state of each.

Recommendations
This section has a set of recommendations for each VM and computer, web and worker roles, Azure App Service Web Apps, and Azure App Service Environment that Security Center monitors. The first column lists the recommendation. The second column shows the total number of resources that are affected by that recommendation. The third column shows the severity of the issue.

Incorrect Answers:
C: Smart Detection automatically warns you of potential performance problems, not security problems in your web application.


Reference:

https://docs.microsoft.com/en-us/azure/azure-monitor/app/proactive-diagnostics






Post your Comments and Discuss Microsoft AZ-400 exam with other Community members:

AZ-400 Exam Discussions & Posts