Microsoft Azure Administrator Associate AZ-104
Get started today
Ultimate access to all questions.
In an Azure environment with a tenant 'contoso.com', an App Service web app 'App1', and a Key Vault 'KV1' containing a wildcard certificate for the domain, how do you initially set up 'App1' to utilize 'KV1's wildcard certificate?
In an Azure environment with a tenant 'contoso.com', an App Service web app 'App1', and a Key Vault 'KV1' containing a wildcard certificate for the domain, how do you initially set up 'App1' to utilize 'KV1's wildcard certificate?
Explanation:
To configure the App Service web app (App1) to use the wildcard certificate from the Key Vault (KV1), the first step is to assign a managed identity to App1. This managed identity helps App1 to authenticate and access the Key Vault securely. Once the managed identity is assigned, an access policy can be created in KV1 to grant the necessary permissions for App1's managed identity to access the certificate. Therefore, the correct answer is B: 'Assign a managed identity to App1'.