Answer-first summary for fast verification
Answer: GIT Workflow -> Protected Branch, Secure Deployment Credentials -> Keyvault
The best practices based on the Microsoft Cloud Adoption Framework for Azure recommend 1) using protected branches in GIT workflows to ensure that changes are reviewed and approved before they are merged and 2) securing deployment credentials using a tool like Azure Key Vault to store secrets securely. This reduces the attack surface by ensuring that credentials are fetched at runtime by the build agent.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are currently utilizing Azure Policy integrated with Azure Repos to establish continuous integration and continuous deployment (CI/CD) workflows. Your objective is to provide recommendations for securing each stage of these CI/CD workflows in accordance with the best practices outlined in the Microsoft Cloud Adoption Framework for Azure. What specific measures should you recommend for each stage of the workflow? To respond accurately, select the correct options in the answer area.
A
GIT Workflow -> Protected Branch
B
Secure Deployment Credentials -> Keyvault
C
Protected Branches -> Azure Key Vault
D
Protected Branch -> Secure Deployment Credentials
No comments yet.