Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Your company is planning to deploy multiple Azure App Service web applications, specifically targeting the West Europe Azure region. These web apps will be accessed exclusively by users located in Europe and the United States. To enhance security and reduce the risk of malicious bots scanning these web apps for vulnerabilities, you need to recommend a strategy that minimizes the attack surface. What security measure should you propose to achieve this objective?
Your company is planning to deploy multiple Azure App Service web applications, specifically targeting the West Europe Azure region. These web apps will be accessed exclusively by users located in Europe and the United States. To enhance security and reduce the risk of malicious bots scanning these web apps for vulnerabilities, you need to recommend a strategy that minimizes the attack surface. What security measure should you propose to achieve this objective?
Explanation:
Azure Application Gateway Web Application Firewall (WAF) provides centralized protection for web applications from common exploits and vulnerabilities, such as SQL injection and cross-site scripting. WAF also includes bot protection features that can help in mitigating the risk of malicious bots scanning the web apps for vulnerabilities. This solution is more suitable than Azure Traffic Manager and Application Security Groups, which primarily handle DNS-based traffic routing and grouping of VMs respectively, and do not offer comprehensive protection against web application attacks.